cab633f05f1cb462c7c6d3a647c03252 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

cab633f05f1cb462c7c6d3a647c03252
Size

2KB
MD5

cab633f05f1cb462c7c6d3a647c03252
SHA1

b077e19824c0d5c73841a3e2430c842a96302dc7
SHA256

4184ee945643080662dbd652ed6e4c1b8be8c042223b88dae3f987820081239b
SHA512

8fb2977fdaa5fd6ce1777447b56e7bfd69da143f745ff3ec27d41e0ad95613710756af997de40941bef6c964c1056e42ba986f5c57eca1b51f06cb37ffb030a5

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
cab633f05f1cb462c7c6d3a647c03252

Files

cab633f05f1cb462c7c6d3a647c03252
.exe windows:4 windows x86 arch:x86

92b83ce8b25930380447dacd6ced3afd

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

WinExec
GetWindowsDirectoryA
GetSystemDirectoryA
GetVersionExA

user32

wsprintfA

Sections

.text
Size: 512B - Virtual size: 140B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 452B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 164B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE