c5b03035bebc41c6bcd17efe1aa0ebca | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c5b03035bebc41c6bcd17efe1aa0ebca
Size

184KB
MD5

c5b03035bebc41c6bcd17efe1aa0ebca
SHA1

a0d8d57a1ed4bf1e344e0c1b9e23390adcbd0dc5
SHA256

9dac5e51a485ce6493157ddc78774eee870f379937ffc0ccbf8e7a5d1dcd1d97
SHA512

a58b2139bf7561654e0d9d01a1b5e8ba8e82b595bbaa84e9319f1953f5661ed74e7c1e4bf4c3659b51e482eaabac42375717ad1f876bf605acdce74ddce8b7d7
SSDEEP

3072:RMBvJZxUXubn7pPE6H2UAG2o+Cc6ku3NRUqC5zqCgBHaH9E7mKSgV6iTI2GB3moG:RMlEubn7a6H2dG2Ptd96aamoNTWBWz

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c5b03035bebc41c6bcd17efe1aa0ebca

Files

c5b03035bebc41c6bcd17efe1aa0ebca
.exe windows:4 windows x86 arch:x86

c5a86b82c43e20025dd93e14f7d6ba07

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VerifyConsoleIoHandle
SetFileAttributesW

user32

BroadcastSystemMessageW
CreateDesktopW
GetTabbedTextExtentA
PrivateExtractIconExA
SetMenu
DragDetect
GetNextDlgGroupItem
CreateWindowExA
GetWindowContextHelpId
MessageBoxIndirectA
UserRealizePalette
RealChildWindowFromPoint
CharNextW
IsCharLowerW
LoadAcceleratorsA
OpenWindowStationA
GetQueueStatus
GetOpenClipboardWindow
DefMDIChildProcA

gdi32

GdiSetAttrs
PATHOBJ_bEnumClipLines
SetROP2
SetArcDirection
PolyPolygon
GetTextExtentPointW
Ellipse
SetMetaRgn
PATHOBJ_bEnum

Sections

CODE
Size: 9KB - Virtual size: 808KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 170KB - Virtual size: 174KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.pack32
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ