c43ca9341c69a3a428cab92fa65cacfd | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c43ca9341c69a3a428cab92fa65cacfd
Size

96KB
MD5

c43ca9341c69a3a428cab92fa65cacfd
SHA1

b047315df59434deb8985af95ef9a650405e5f37
SHA256

86540a34f7e64a47b174172e10ac416387efbc52162c60fe0ae1f586a13fb03a
SHA512

cd86db271c675e1e22f18781c67fb6026a53c96f82f104471276343fc3cd700b99b1fb09e139fb8be9360fedee9f562cf8e1bd015c9f9ec3dc9fa98b8fcb9924
SSDEEP

768:RgFp/hNFtwzUgqaZljsV3VMfQtePhtXEg1e3hxZnDgMjsm7cD4ewrzNN7/c:GzfvajixtePhtXyxxZDnjP7cseU5N7

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c43ca9341c69a3a428cab92fa65cacfd

Files

c43ca9341c69a3a428cab92fa65cacfd
.exe windows:5 windows x86 arch:x86

2686d0f7e981eb75f54d3149a545fd8d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

IsMenu
GetDC
DrawIconEx
GetDlgItem
LoadCursorA
DialogBoxParamA
DrawIcon

advapi32

RegCreateKeyA
RegLoadKeyW
RegCreateKeyA
RegQueryInfoKeyA
RegOpenKeyW

kernel32

CreateDirectoryA
GlobalFree
GetFileTime
DeleteFileA
CopyFileExA
ExitProcess
FreeResource
GetPriorityClass
FormatMessageA
OpenFileMappingA
GetStdHandle
GetLocalTime
GetFileType
DeleteFileW
ExitThread
GetCommandLineA
CopyFileA
GetCPInfo
HeapAlloc
lstrlenA
ReadFile
FindClose
lstrcatA

Sections

.77g5
Size: 19KB - Virtual size: 18KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.2ec71
Size: 18KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.9h08h
Size: 55KB - Virtual size: 419KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.7d77h
Size: 1024B - Virtual size: 917B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ