c1ec1156d3becfc68bdf7b422d55ef8f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c1ec1156d3becfc68bdf7b422d55ef8f
Size

8KB
MD5

c1ec1156d3becfc68bdf7b422d55ef8f
SHA1

6fe073e733b982ff4f7d321ee991897170ffc183
SHA256

9454df90082e873cfcca4f4a9adee3e93168bc8048976385b1869aeb16e4b297
SHA512

bc870dcc89af9f8dd3d37651ff97996ac0c457324886d9a4ef9d78c29c5971ad0eecbbd08b960efcb76e686d3116302d7b0e81e2ba54051ef49974c283e20d39
SSDEEP

96:ia2LDOKtdqw1U+EAJ74Ra7jm5Z+P9FGSd+Dmuo7qTQ2Gv0zVtxhNzKX6kNyvOEE:iaKZawi+EGaI/GSIiuosLtxjz06InE

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c1ec1156d3becfc68bdf7b422d55ef8f

Files

c1ec1156d3becfc68bdf7b422d55ef8f
.exe windows:4 windows x86 arch:x86

8c07977954537cd1bcea66f4f64f70e2

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateFileA
ExitProcess
GetModuleHandleA
GlobalAlloc
GlobalFree
Sleep
WinExec
lstrcatA
lstrcpyA
CreateThread
GetSystemDirectoryA
CloseHandle
DeleteFileA
GetCommandLineA
WriteFile
ReadFile
MultiByteToWideChar
lstrlenA

rasapi32

RasHangUpA
RasSetEntryPropertiesA
RasEnumDevicesA
RasEnumConnectionsA
RasDialA

user32

TranslateMessage
MessageBoxA
UpdateWindow
ShowWindow
DispatchMessageA
CreateDialogParamA
SetWindowPos
EndDialog
GetMessageA
IsDialogMessageA
wsprintfA
SendMessageA

ole32

CoInitialize
CoCreateInstance

shell32

SHGetSpecialFolderLocation
SHGetPathFromIDListA

Sections

.data
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ