c5a44154ac801bb9147a1bb99a8083bc | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c5a44154ac801bb9147a1bb99a8083bc
Size

169KB
MD5

c5a44154ac801bb9147a1bb99a8083bc
SHA1

000c0627f2441c86334ebf892b17e7f5124492f3
SHA256

618593bb9de29818c2574b3de300be63e47fdfccd6f404447e84ed43ea445f5a
SHA512

84f7892fbdfba9a18bed65a3ebf4d129ff4c4d8572d59febec069c1f480b2c4eb5b69192b610f88fa8e0a14f859002711f0013ed815d5d781d156e5237b6e9b7
SSDEEP

3072:RGh6G7bKK9uA7PnB9o/R3nnwA942qPAqKQt/P+GOTkdNLIg81i7x/ZVMY/QAfACe:RK6GXKK8AXGnX0XzOTkdalMxRDy

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c5a44154ac801bb9147a1bb99a8083bc

Files

c5a44154ac801bb9147a1bb99a8083bc
.exe windows:4 windows x86 arch:x86

4a80c7ec15edb548339c3f04ff7c8c6f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

__p__fmode
__set_app_type
_except_handler3
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
_acmdln
exit
_XcptFilter
_controlfp
_exit

kernel32

VirtualAlloc
EnumCalendarInfoA
GetFileType
GetFileSize
EnumResourceLanguagesA
CreateMutexA
GetModuleHandleA
GetStartupInfoA

Sections

.text
Size: 18KB - Virtual size: 17KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ