c6c876f6f1dc330365eaa442d06b4584 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c6c876f6f1dc330365eaa442d06b4584
Size

30KB
MD5

c6c876f6f1dc330365eaa442d06b4584
SHA1

724dc02bb2f5ba1ef0a41502f403f02b5b67f691
SHA256

8ff5cd15b4c433c5b7f9736fdccaf897b2ba7627d9f49348e3bf6520aeaabf76
SHA512

25aa2630594c88023b8f7605d393f60e1fa3e7362428dbb2f5d339094de962c0906d7f621ef4abf824a44b12e25fb9d2799d7e8d3a605dd2393f5bceccbcdf04
SSDEEP

768:KVYviH8N8qbh+u569B8ZM0BPgVj1PfZS/Cf:KVYqcOtwXB6PxSKf

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c6c876f6f1dc330365eaa442d06b4584

Files

c6c876f6f1dc330365eaa442d06b4584
.exe windows:4 windows x86 arch:x86

fa2d02e80f177119b49b0d790d1be4cb

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetTickCount
CancelIo
SetEvent
lstrcpynW
ResetEvent
CreateEventW
GlobalUnlock
GlobalSize
GetStartupInfoA
WriteProfileStringW
Sleep
lstrcmpW
GlobalReAlloc
GlobalFree
GlobalAlloc
GlobalCompact

Sections

.text
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ