cb9bdfde8f15d9af1353940632936d09 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

cb9bdfde8f15d9af1353940632936d09
Size

5KB
MD5

cb9bdfde8f15d9af1353940632936d09
SHA1

67e27f1b550813f5ac08ad7ba53a0f1731b3bbb5
SHA256

debdbd31ce2269b2c61b42992fb8d90fee649e5e4c7c591da6a5d014f7290713
SHA512

741d50a93ee9307da18e09a822277db8a536afdce9cf15dbfbb2ff01ff5fe6540102f85e2c1ca6efd6bdcd10e48cbc63341c88710599d932201941c7b2c15c38
SSDEEP

96:/kk4D59egljAE9tloZzxEdJ5lSSWiF9hS/xFX1u9Ew9XCgPP4oyQbD:ckYqkjFtaTolB4/vIT9XCsP4oy

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
cb9bdfde8f15d9af1353940632936d09

Files

cb9bdfde8f15d9af1353940632936d09
.exe windows:4 windows x86 arch:x86

ebd19d01ee83270308c739aac4ea4f54

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ExitProcess
Sleep
CreateThread

msvcrt

malloc
free
_exit
_XcptFilter
exit
__p___initenv
_except_handler3
_initterm
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
_controlfp
sprintf
__getmainargs

mpr

WNetAddConnection2A

rpcrt4

RpcBindingFree
RpcStringFreeA
RpcBindingFromStringBindingA
RpcStringBindingComposeA
NdrFreeBuffer
NdrNsSendReceive
NdrNsGetBuffer
NdrClientInitializeNew
NdrConformantArrayUnmarshall
NdrConvert
NdrConformantStringMarshall
NdrPointerMarshall
NdrConformantStringBufferSize
NdrPointerBufferSize
RpcRaiseException

Sections

.data
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE