c309cdb109b965ba6dcf97555a10a9e7 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c309cdb109b965ba6dcf97555a10a9e7
Size

12KB
MD5

c309cdb109b965ba6dcf97555a10a9e7
SHA1

ced3ec8ccb56ba3fa08894aac1f6c0213c19616f
SHA256

dc0fac57d7d638a6101c26078b94d4dcfafa4c0fceb2d323cd84808d5d0b973b
SHA512

091c6cb1926f7dd1de5263b269527f9cf15a5a1ab8553d0d9bb4aa26d681bb32a266f8cdaf51e8230ff69a73de74de6dd3d9ceb0ec1b6a2aedfe5d6550338ff2
SSDEEP

192:Wi/566kruomgOM9E9GzhY5aJQyi6Djqo/AHvHtBFSt6PWfbF1FhiLdbo4oyn:j566kTGM7NtnhXitSqWjFnMdbo4

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c309cdb109b965ba6dcf97555a10a9e7

Files

c309cdb109b965ba6dcf97555a10a9e7
.exe windows:4 windows x86 arch:x86

ce620fdf137fcb142bd961fd17072b42

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLastError
SetFileAttributesA
CloseHandle
SetFileTime
CreateFileA
Sleep
SetCurrentDirectoryA
GetWindowsDirectoryA
FindClose
FindFirstFileA
CreateDirectoryA

shell32

ShellExecuteA

ws2_32

htons
htonl
bind
ioctlsocket
connect
shutdown
setsockopt
select
socket
sendto
recv
recvfrom
inet_addr
closesocket
gethostname
gethostbyname
WSAStartup
send

msvcrt

_controlfp
_except_handler3
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
__p___initenv
exit
_XcptFilter
_exit
_onexit
__dllonexit
strcmp
malloc
free
printf
??3@YAXPAX@Z
memcpy
memset
??2@YAPAXI@Z
_beginthread
strcpy
strncpy
atoi
strlen
__CxxFrameHandler
_EH_prolog
_close
_write
_lseek
_open
_read
fclose
fwrite
fopen
strcat
_gcvt

Sections

.data
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE