ad79cc30cd4a0df5922a3bfd72fc86a8 | Triage

Sharing

General

Target

ad79cc30cd4a0df5922a3bfd72fc86a8
Size

12KB
MD5

ad79cc30cd4a0df5922a3bfd72fc86a8
SHA1

d5b9e390634aec44c89cca6a74543e8db67c6750
SHA256

964361015cd0733bc156802e40ee81efe34ddc4ad7ec24efe796942dd26e56eb
SHA512

94a0b8de763fd7873cd0e600d7ae369e24a645a2471153617b36ac18ccb638c2c3a57bea838da255564d6c13ddc6c49f6820c263aad915d48a2f1d2e47860d31
SSDEEP

192:WX33bKGPDi6V+HsHG1AVKQPrcb2iMHRKeztCITF4U:Wn3mGPDi62BjbwU6FX

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ad79cc30cd4a0df5922a3bfd72fc86a8

Files

ad79cc30cd4a0df5922a3bfd72fc86a8
.exe windows:1 windows x86 arch:x86

44b3b89db63810179643a552fa3da927

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

strspn
sin
cos
wctomb
wcstol
wscanf
strcpy

kernel32

WinExec
CloseHandle
GetTimeFormatA
GlobalFix
Heap32Next
HeapCompact
GetVersion

Sections

.text
Size: 2KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 3KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 745B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE