c909693f29cf45c0bc252b5d773fbbe5 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c909693f29cf45c0bc252b5d773fbbe5
Size

109KB
MD5

c909693f29cf45c0bc252b5d773fbbe5
SHA1

ea1496d46ed60b6eedf01c0e09645290cbc4f3a8
SHA256

e987cff9704eaa6097c86568a324510bb09eff414ae19321241455be79ce122e
SHA512

619ea7416e2b0f25a4b4ad9836c0e79bf7502f39b73653dd29e7e2fe5cd63d6ccd39314ebcde1fb7ea31dc84daa35a4da8314e309a87641c2b159d3fa2599bf7
SSDEEP

1536:UL/uyjGJtt6nUjBrCjg2Crqs+RoP5i6H7cPwP9yF8WLYdgEkJjPX/363i6Ez+wyR:bgGLt6nSxrJmcioLPg+WLdbX/PyiVB

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c909693f29cf45c0bc252b5d773fbbe5

Files

c909693f29cf45c0bc252b5d773fbbe5
.exe windows:4 windows x86 arch:x86

c6ce4e40aff8e8d2c72926a2fdbe2bb0

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCommandLineA
RemoveDirectoryW
lstrlenW
FindClose
GlobalFindAtomA
GetModuleHandleA
CopyFileA
GetWindowsDirectoryA
lstrlenA
DeleteFileA
QueryPerformanceCounter
lstrcmpiA
lstrcmpA
RemoveDirectoryA
lstrcmpiW
GetSystemTime
VirtualAlloc
VirtualFree

gdi32

GetObjectA
SetTextAlign
CreateCompatibleDC
SelectObject
SetStretchBltMode
CreatePalette
SetTextColor
SaveDC
GetDeviceCaps
GetTextMetricsA
SetMapMode
DeleteDC
DeleteObject
CreateFontIndirectA
GetPixel
GetClipBox
SelectPalette
RectVisible
GetStockObject
LineTo

user32

CharNextA
GetParent
GetDesktopWindow
GetDC
TranslateMessage
GetSystemMetrics

glu32

gluNurbsCallback

Sections

.text
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 51KB - Virtual size: 51KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ