cb5c21f4127cf01c974598b6ff958976 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

cb5c21f4127cf01c974598b6ff958976
Size

92KB
MD5

cb5c21f4127cf01c974598b6ff958976
SHA1

6e1c609ad896122bceb805f36b473f3a36633a66
SHA256

7e28b14d481bcca990ff1d1135a161c6da9898047d4b8792480046f7a20217e4
SHA512

755b2349f73f74c35bb0ca7d1521c32d21415783236ed2577ec6f146c8e1d17b67b5032495eea0515790c258777a07d39060eed5affe5211847013ec03a5acab
SSDEEP

1536:TxiQwe3tnedC25HgPScO05shcHJYoLVa4s3Glp8EP2ZMJJfkojZ/ZO/vA8bS5lOV:Ke3teFAPWbhKPJUqHmMX3XcyO7B

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
cb5c21f4127cf01c974598b6ff958976

Files

cb5c21f4127cf01c974598b6ff958976
.dll windows:4 windows x86 arch:x86

b400d91b2daa6c26e460bacbe305f71d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

user32

MessageBoxW
MessageBoxIndirectW

kernel32

LocalAlloc
OutputDebugStringW
ExitProcess
GetACP
HeapValidate
InterlockedDecrement
InterlockedExchange

advapi32

RegEnumValueW
RegCloseKey

comdlg32

GetOpenFileNameW
GetFileTitleW

Sections

CODE
Size: 22KB - Virtual size: 21KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 25KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 40KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 30KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ