c556a2698d4427f12045851843696347 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c556a2698d4427f12045851843696347
Size

72KB
MD5

c556a2698d4427f12045851843696347
SHA1

6f1f1aa2c18e59376a21ff7fd035cc81bab47869
SHA256

91eae6f707ca857cc097c5ceaa65ccb05ba116f0ac2e6b5dc4b07135e2be73ff
SHA512

d5a3fb86d8f265d88c0e1e497d1cc1d5d9d1465f67d560103de12eef5913af345a317d025833019baf6720c5acddc63287144c82beb2a2bb610f28724b367460
SSDEEP

768:ZGkKyRvlOk/ghsDIHkod6fQ55iLCU0zftxo9wX0+n6JMnB+C91UHs+9Kp96F6kI8:ZaSghLni90zfswXjaKLEsTWGSNhPn

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c556a2698d4427f12045851843696347

Files

c556a2698d4427f12045851843696347
.exe windows:4 windows x86 arch:x86

d04ae087cdfdd08a151eb8830c491c43

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

WaitForSingleObject
CreateProcessW
CloseHandle
UnmapViewOfFile
MapViewOfFile
CreateFileMappingW
CreateFileW
GetTempFileNameW
lstrcpyW
lstrlenW
GetModuleFileNameW
GetModuleHandleW
GetTempPathW
GetFileSize
lstrcmpA
DeleteFileW
lstrcmpW
CopyFileW
FindClose
FindNextFileW
FindFirstFileW
LocalFree
LocalAlloc
GetFileAttributesW
GetCommandLineW

shell32

CommandLineToArgvW

Sections

.data
Size: 71KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE