c137677bcc5b7b92ccf294e4a2154161 | Triage

Sharing

General

Target

c137677bcc5b7b92ccf294e4a2154161
Size

34KB
MD5

c137677bcc5b7b92ccf294e4a2154161
SHA1

318ab7d40cfd4bc1f3d7f5aa50c17f041f7763a9
SHA256

0a67b4c23346b59f099e35076b8d03526bb1977c8e8dfb4b4cf25517bc7f8b0b
SHA512

c8cb94544b63bfcbef6b9611889eae5510f9ff70c385983a6b6ec5f65ef701d7d9db3aaa3a643dac950287ff51b195950e1592a44cd9b455b32136ebb64ec61d
SSDEEP

768:vu8fAR20lvvykno5+upYPbixSDEu3nLo29exsoFRz4:vRaSkncJYz/x0Pxp4

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c137677bcc5b7b92ccf294e4a2154161

Files

c137677bcc5b7b92ccf294e4a2154161
.exe windows:4 windows x86 arch:x86

af7fdb9ebf2cb69a553a3b994499fc16

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetConsoleWindow
CompareFileTime
CopyFileW
CreateThread
DefineDosDeviceW
EnumResourceTypesW
GetCommConfig
GetDateFormatW

msvcrt

_mbccpy
_mbctombb
_mbsdec
_pctype
_snprintf
_snwprintf

shell32

DragQueryFileAorW
StrStrIA
DuplicateIcon

Sections

.text
Size: 20KB - Virtual size: 31KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE