cc53612317cdb116d81ae20409d91873 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

cc53612317cdb116d81ae20409d91873
Size

30KB
MD5

cc53612317cdb116d81ae20409d91873
SHA1

5e0bb5c6adfcf0ccca175b3fcb60a552054c7183
SHA256

557523ee08188c533aa098cbf10c01b107aa7cab97b1c0298e7a6577b1dece50
SHA512

7657093a505135e76261fb706ef6cca2197edf3b170b950920035388766739663a055dad48f51c2546521255e1c4a29fddad6204ddd113ba23e3fd28da5f1a0d
SSDEEP

384:nh/zDcz1SbdxjYjin3V1hjHr1knEfdDwPm04DENE+l8AAG7QGX/K6JNPe5+:RzwajEjiRjOnEu+E9lRQuRn

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
cc53612317cdb116d81ae20409d91873

Files

cc53612317cdb116d81ae20409d91873
.exe windows:4 windows x86 arch:x86

29bcef6221f46ece9534d6ddc6aaac29

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetEnvironmentVariableW
LoadLibraryExA

ntdll

RtlAppendStringToString
RtlEqualComputerName
RtlSetHeapInformation

user32

WindowFromDC
RegisterClipboardFormatA
GetSysColorBrush

ole32

CoIsHandlerConnected

advapi32

StartServiceCtrlDispatcherW
RegFlushKey
ReportEventW

gdi32

FrameRgn
GetCurrentObject
GetStretchBltMode
LineTo
CreatePatternBrush
EnumFontsW
SetViewportExtEx
SetTextJustification
SetTextColor
SetROP2
SetPixelV
SetMapperFlags
SetDCBrushColor
PlayEnhMetaFile
OffsetClipRgn

comctl32

RemoveWindowSubclass

shell32

SHBindToParent

rasapi32

RasEnumDevicesW

msi

MsiSourceListForceResolutionW

Sections

.text
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 65KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 488B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ