c5483d64931139d40f4112283f46c5fe | Triage

Sharing

General

Target

c5483d64931139d40f4112283f46c5fe
Size

13KB
MD5

c5483d64931139d40f4112283f46c5fe
SHA1

8da07d027495a9a0c193517f60f6a228085d7573
SHA256

ef84937d9e4d9b803a08e33dc6f0af92e880c8c720ab28f6064d5abaff5bb8bb
SHA512

b3dc7e96c2a3ceb1605da3be43e3623fcf1b3b6fcb309350cc8226eab7964cb75fa70e38b6c94bdac006e3b3b5c138f3da30db3c94e5065a7d3bec83d84d3a2a
SSDEEP

96:IUwxtcSew8aLzVHtaV+DLJbA5rsEB07GgJ8c9shzOKvQ:IUwbJewbHtpDL25jXgh9szQ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c5483d64931139d40f4112283f46c5fe

Files

c5483d64931139d40f4112283f46c5fe
.exe windows:4 windows x86 arch:x86

c494458029910d0ed6df63da0b05bbd4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetDCEx

kernel32

CreateThread
ExitProcess
GetLastError
GetTickCount
Sleep
WaitForSingleObject

gdi32

EnumFontsW

Sections

.text
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 384B - Virtual size: 320B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ