c95bf1ea56d0cb7860deac7e4ea7319c | Triage

Sharing

General

Target

c95bf1ea56d0cb7860deac7e4ea7319c
Size

132KB
MD5

c95bf1ea56d0cb7860deac7e4ea7319c
SHA1

d37545f389aece394669bf390df1fda01a13f46d
SHA256

71ffdffd191827a5fbb7382daac52a13135aa18909bd0d70bbd13de31e6da5b2
SHA512

c72c042cefcc3e608fe555271bdd1d81e75a18998a5dde0c8a7759db345ff890bd2f18cde0d7ab631bbe574b565703066e9833e904e9b99e951cda5df88b699d
SSDEEP

3072:X3OCAYNb/Cg36cLJwtMDSaSRB0SiaQ8RU6CHnPX:XVAYNSiyMpSY9a/RZEX

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c95bf1ea56d0cb7860deac7e4ea7319c

Files

c95bf1ea56d0cb7860deac7e4ea7319c
.exe windows:4 windows x86 arch:x86

dc72cf4b6c898a8f7e1cb22b621ae4ac

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SuspendThread
ReadFile
DeleteCriticalSection
GetLocalTime
CreateThread
FreeEnvironmentStringsA
CloseHandle
Sleep
EnterCriticalSection
InitializeCriticalSection
GetLastError
GetStartupInfoA
FindFirstFileW
EnumResourceNamesA
GetSystemTimeAsFileTime
WriteFile
LeaveCriticalSection
ExitProcess
SetEndOfFile
FindClose
SetFilePointer
LoadLibraryA

oleacc

LresultFromObject
CreateStdAccessibleObject

Sections

.text
Size: 109KB - Virtual size: 108KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 740B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 344KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ