c21c8e7ea7a45334b4ca51bd727d7d57 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c21c8e7ea7a45334b4ca51bd727d7d57
Size

185KB
MD5

c21c8e7ea7a45334b4ca51bd727d7d57
SHA1

c21c0bed1edcb3331e8e4f01f6195e696f3d27a2
SHA256

ff15b8e71824b70b33eca86c9fe122adf264c2c6b44569919ede422a02af9a0c
SHA512

7df71c3957cc3f3424149e4c5b4ad1eecc25bd906248e21bab5ccb1ecf2cc99e9780783bf061c1d36c31f8e88e01b9cb893c756424ed6a46f70f8fb1b7485855
SSDEEP

3072:KEfhOONjX/kASxccHh6kwFJLnDJnfVOKkYwtANPYE8G5y0Rxbu:K0OEzsASckq5DGKzKANPYqf

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c21c8e7ea7a45334b4ca51bd727d7d57

Files

c21c8e7ea7a45334b4ca51bd727d7d57
.exe windows:4 windows x86 arch:x86

9cbf640b4e8ca89140a1f602713da9f8

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

MapVirtualKeyA
CharToOemA
LoadAcceleratorsA
OpenDesktopA
GetUserObjectInformationA
PostMessageW
DrawTextA
MessageBoxIndirectA
CharUpperBuffW
InsertMenuA
CharUpperA

kernel32

GetLongPathNameA
FillConsoleOutputCharacterA
WriteProfileSectionA
SetConsoleNumberOfCommandsW
GetConsoleAliasesW
FindResourceA
ExpandEnvironmentStringsA
GetSystemDirectoryA
GetTempFileNameA
GlobalFindAtomW
GetWindowsDirectoryW
EnumDateFormatsA
PeekConsoleInputW
OpenJobObjectA
ReadConsoleOutputCharacterA
GetCPInfoExA
CreateNamedPipeW

msvcrt

_wgetdcwd
wcsncpy
exp
ctime
_wgetenv
wprintf
_wenviron
_wstat

Sections

.share
Size: 170KB - Virtual size: 640KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.DATA
Size: 10KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ