c5dd08e9aa9c906b19762400bcbc8273 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c5dd08e9aa9c906b19762400bcbc8273
Size

16KB
MD5

c5dd08e9aa9c906b19762400bcbc8273
SHA1

985b5206bcec2a11030d5ed78cd08fdc6e7d29fe
SHA256

60207acc7e2f523408f6f3bb32d3604cdb837e5eaca3fff4945117b25e0eb6c8
SHA512

30ef44da41354b9e38a97d5b806972d6a31d680f4128f8bfdf9fc0e7bbb86f2eeacd98307b4e28a2756d4c02d493b394e6e117c07fb259547547cbcbdc52aa2c
SSDEEP

96:akClhIQE4XpY6AgCCcwm/XOIRt07IvHV+C4Uic6TD00iI4Ph:akKI14vMXOI0BpDhw

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c5dd08e9aa9c906b19762400bcbc8273

Files

c5dd08e9aa9c906b19762400bcbc8273
.exe windows:4 windows x86 arch:x86

246e79100c365e11a13fa8a1df85d908

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ole32

CoInitializeEx
CoCreateInstance

kernel32

VirtualFree
FindClose
FindNextFileW
FindFirstFileW
VirtualAlloc
GetDriveTypeW
CloseHandle
WriteFile
CreateFileW
GetTempFileNameW
GetTempPathW
GetCurrentProcess
GetProcAddress
GetModuleHandleW
GetVersionExW
Process32NextW
SetFilePointer
Process32FirstW
CreateToolhelp32Snapshot
Sleep
GetModuleFileNameW
GetLastError
CreateMutexW
CreateThread
GetTickCount

user32

wsprintfW
RegisterClassW
LoadIconW
MessageBoxW
LoadCursorW

gdi32

GetStockObject

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 986B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE