cbb3482c03a2c6d6ebd0d579a95abdf0 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

cbb3482c03a2c6d6ebd0d579a95abdf0
Size

117KB
MD5

cbb3482c03a2c6d6ebd0d579a95abdf0
SHA1

e220e825bebbf1d4ae14975eca661e67ef117144
SHA256

2683cba12ae0b5334559d8549e0c884113ae8446d3100764bf0d051c14cd0f39
SHA512

c1a1916e3c792d65225edc74b026fd86ceb7361d8c7924f37d583a28d3e45184b5169ad1dfdc94c764dc5059cb601298f8b83db18730a92410f9f0bdd2a69ecb
SSDEEP

1536:uzpoGDl31C8f6SOvaLzX+aXGrj9KABF9SPRFHquxMJOjvSaABsDAwvpKbKQ7LGuQ:if6SOozOaXGrjdSP9EaA0ByKQ7Oh

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
cbb3482c03a2c6d6ebd0d579a95abdf0

Files

cbb3482c03a2c6d6ebd0d579a95abdf0
.exe windows:4 windows x86 arch:x86

2e75e869ea7b8e734022fc82bfaac2d5

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

shell32

Shell_NotifyIconW

user32

IsCharUpperA
KillTimer
LoadIconA
IsChild
GetActiveWindow

gdi32

GetBkMode
GetTextColor
CreateDIBitmap
GetBkColor

kernel32

GetCurrentThreadId
VirtualAllocEx
GetEnvironmentStrings
GetDiskFreeSpaceA
ExitProcess

Exports

Exports

EdAecccyIs@12

Sections

.text
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 99KB - Virtual size: 231KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ