c9c2209dc55b04e1d61d419f1762e95c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c9c2209dc55b04e1d61d419f1762e95c
Size

291KB
MD5

c9c2209dc55b04e1d61d419f1762e95c
SHA1

c8f8fcd21983f68b3bf5644bd5801805fd7f010e
SHA256

db61ad0a65716a3d1d5f2230a65d9fd76eb04e291f293385f25d34b0633aace4
SHA512

70edc9372d5d7cd4038d35244faefd68093683a06fe45ce6aa41f34e65e9c6739b528ddd6cdcb0986bc2a748ced0bbfdcdb536daea119398dbeec9968f6346d5
SSDEEP

6144:SjRK0Gx6tz3D8NYPWBPobrU9fblmkH9pMJib13BtqYcEDK3voz:SY0GKz8NYOBPhskdpMJib1xk3voz

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack002/raw.exe

Files

c9c2209dc55b04e1d61d419f1762e95c
.eml
BL draft & INV & PL_xls.z
.zip
raw.exe
.exe windows:6 windows x86 arch:x86

439ff53323e9506db8654c0d8af9cf37

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

EnumTimeFormatsW
GetConsoleOutputCP
GetLastError
GetModuleHandleW
GetProcessHeap
GetStdHandle
HeapAlloc
HeapFree
LocalFree
VirtualProtect
WideCharToMultiByte
WriteConsoleW
WriteFile
lstrlenW

ole32

OleUninitialize

user32

LoadStringW

msvcrt

malloc
memset
towlower

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 765B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 656B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 156B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
email-html-1.txt