ca300927c9e6d7abb021762d7de8a7ad | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ca300927c9e6d7abb021762d7de8a7ad
Size

172KB
MD5

ca300927c9e6d7abb021762d7de8a7ad
SHA1

e84a0a9c6f5e0a954f7e0843a62e612b77cbb26d
SHA256

517b44da75b639812a0ec085bffd8aafd86060140b98aec077207882039587d8
SHA512

d8dc02d839fcfa0696cbb0b34d2ae1225193200853d979e207b2f5c2aa4e8128fe49c2dc1d1254cbea78b7286b6bbc43d43834306ca60533efa5a2adea9d1b68
SSDEEP

3072:oiw8Mx5jd6766dTSeGmn1Z7GmUOP217o07/q7SHGLtm3b:oiwdx5pb6NSeGi66260XH

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ca300927c9e6d7abb021762d7de8a7ad

Files

ca300927c9e6d7abb021762d7de8a7ad
.exe windows:4 windows x86 arch:x86

88e5af3fc89cf8dde3be6e51256eab32

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ClearCommBreak
GetCurrentDirectoryA
InitializeCriticalSection
GetTapeParameters
SetConsoleTitleA
CloseHandle
SetUnhandledExceptionFilter
GetAtomNameA
WriteConsoleOutputCharacterW
GetProcessHeaps
LoadLibraryW
GetOverlappedResult
CreateDirectoryA
WaitForDebugEvent
SetFileAttributesA
GetModuleHandleW

user32

GetUserObjectSecurity
FreeDDElParam
CopyAcceleratorTableA
DestroyWindow
GetMessageA
SetLastErrorEx
GetKBCodePage

gdi32

ModifyWorldTransform
CreateDIBSection
GetEnhMetaFileHeader
GetICMProfileW
GetTextMetricsW

Sections

.text
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 4KB - Virtual size: 940B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 100KB - Virtual size: 97KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data0
Size: 60KB - Virtual size: 59KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE