c3bf3562fdcabfe2d10f57436f68dce3 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c3bf3562fdcabfe2d10f57436f68dce3
Size

1.0MB
MD5

c3bf3562fdcabfe2d10f57436f68dce3
SHA1

741e27b49e86ecda059818c35bc2d8cecc8b62bc
SHA256

f00cb367187c0871f4f8ea9608fefc350299b7b67cf2284b231858b5141eb64c
SHA512

4d260b0a3f859361842f3bd8ba1e0bab82ff6328d0b9675c50499f472d139889391271159944ab64966c692aa7e6cd8d772f6eb3edca9909d3af2e9c11fe2e92
SSDEEP

24576:Bo/PHHvin67Fzcd5EZ8UiN+aF0qgK4/2mBL:+i67Fd3iga1gK22mBL

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c3bf3562fdcabfe2d10f57436f68dce3

Files

c3bf3562fdcabfe2d10f57436f68dce3
.exe windows:4 windows x86 arch:x86

8ac1d71ea19937a0aa8d97b9f1bb478d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
LoadLibraryA
CloseHandle
GetFileSize
LocalFree
GetVersion
GetVersionExA
lstrlenA
lstrcpyA
GlobalFree
CreateEventA
GlobalAlloc

gdi32

CreateCompatibleDC
MoveToEx
GetTextExtentPoint32A
GetObjectA
GetPixel
CreateSolidBrush
SelectObject
LineTo
GetDeviceCaps
GetBkColor
SetBkMode
GetTextMetricsA
ExtTextOutA
DeleteObject
GetTextColor
GetStockObject
PatBlt
CreateFontIndirectA
SetROP2
SetPixel
BitBlt

msvcrt

rand
__p__fmode
_except_handler3
wcstoul
_c_exit
toupper
_controlfp
__getmainargs
wcschr
_initterm
_adjust_fdiv
_exit
__setusermatherr
exit

Sections

.text
Size: 512B - Virtual size: 506B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1.0MB - Virtual size: 2.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ