cbef73e1d46d7259054762ef2dcd2692 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

cbef73e1d46d7259054762ef2dcd2692
Size

1.5MB
MD5

cbef73e1d46d7259054762ef2dcd2692
SHA1

71f387ef79059af777361c25d0455bf953eaa362
SHA256

6e5ef70e169701a1e285b80340c6cba8a9daea1cf8bf07ec5f8a49887a441a88
SHA512

a36886e5a48428d75f6f846603422af1157be18a43434b4879a88219ccdc19b01caa4396518f25e1d60e04dde2214fb563c1873d88279aa34f968a337c2e50d5
SSDEEP

24576:uTxz0lVAw8ePlhVDJH/tGbOJI9zDrj2F997KAbnSIiE+npWr4:uTd0oqBJH/3mM997n4

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
cbef73e1d46d7259054762ef2dcd2692

Files

cbef73e1d46d7259054762ef2dcd2692
.exe windows:4 windows x86 arch:x86

7657b65ea663d8c2c121592bfc7796f8

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

RequestDeviceWakeup
GetCommandLineA
GetProcessAffinityMask
WaitForMultipleObjects
GetWindowsDirectoryA
GetDiskFreeSpaceA
lstrcatA
LocalFlags
GetDllDirectoryA
GetVersion
QueryInformationJobObject
GetPrivateProfileStructA
ReadConsoleOutputAttribute
SetComputerNameExA
WriteConsoleA
GetVersionExA
GetFileAttributesExA
SetSystemPowerState
VerifyVersionInfoA
VirtualAlloc
ChangeTimerQueueTimer
Thread32Next

d3d9

Direct3DCreate9

advapi32

CredFree

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 802KB - Virtual size: 1.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 393KB - Virtual size: 392KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ