c0ee1a297890a736bdfb8630fb10af81 | Triage

Sharing

General

Target

c0ee1a297890a736bdfb8630fb10af81
Size

17KB
MD5

c0ee1a297890a736bdfb8630fb10af81
SHA1

c621a4adeae0e840addd9159adff805a9e80a599
SHA256

d0e8f7f549fddf4fe84c8c5b45e7abb0d46faab720438d7f1304fc63fecd4032
SHA512

2c5731ab42f3c6233b942399204c217fbacad8de8e1b862a47ae0f5c3026ce869bb48e7c2e181efea7f2e177984dab640e3e9d77c02a1c8bd5f8b545a7d81f71
SSDEEP

96:2wa8JmYaMB3IzSeVPU8/A6J6VIrXyFXyJZHeB5rzvdWrQ:HmYpB3g5RU8/FJ6VIbQXyb+B7eQ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c0ee1a297890a736bdfb8630fb10af81

Files

c0ee1a297890a736bdfb8630fb10af81
.exe windows:4 windows x86 arch:x86

c162473f2b23a9ebcac3fd8a0fcf7b1d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetDCEx

kernel32

CreateThread
ExitProcess
GetLastError
GetTickCount
Sleep
WaitForSingleObject

gdi32

EnumFontsA

Sections

.text
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 384B - Virtual size: 320B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ