c99aa50b4e74dd3424dd7c1a8a5bb2ce | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c99aa50b4e74dd3424dd7c1a8a5bb2ce
Size

88KB
MD5

c99aa50b4e74dd3424dd7c1a8a5bb2ce
SHA1

a675047a795e31ff19b03d01c4d89ac794cd2f34
SHA256

00a9b6091e0d211e60752b68760642fbf8e80366b09f5a7f7258260c969fba88
SHA512

3bcd04d0f6343f0568bfd4765667b5d5bde61f820e07ec9ab358ddbdb83e8e7bf4d16df64cd0dea9081d5ada753338256a642e1d774b7eb9ca526aca006e6961
SSDEEP

1536:J5g7zPVjUzZsTG2+JXc9AG43yRwEWabenPDuiMPjDR5gDTAgbYaI6vf:KQZsTGTXNyRlberun5WUg93

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c99aa50b4e74dd3424dd7c1a8a5bb2ce

Files

c99aa50b4e74dd3424dd7c1a8a5bb2ce
.exe windows:4 windows x86 arch:x86

bcc72ef83efb1f1feb04585842b4fa1e

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualAlloc
LoadLibraryA
GetProcAddress

user32

TranslateMessage
DispatchMessageA
GetMessageA

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 314B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 520B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 82KB - Virtual size: 81KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ