cd055110c8a35ed64c9058ee7d777903 | Triage

Sharing

General

Target

cd055110c8a35ed64c9058ee7d777903
Size

15KB
MD5

cd055110c8a35ed64c9058ee7d777903
SHA1

2f9fbff06bfee2a952905d30fca989eb715b611b
SHA256

799b52f52987d45a5e567a35d30ee1d7ebc6a0e735958419a1d1d74b81559b4e
SHA512

b917bac15a6b4b993128f69170b816724b7eefe9846cd7bdc7425dddeff5c814b8127aafe7ee09907b39a7c57dffbaecf00e22df4fbee6dafc15842d0eeb4ac2
SSDEEP

192:8bNj+BzW9djENCE8+zlPSUS93qdz0bx/Kh5Eqe9CEGIsuCHLoDyGOcrtpHXULP:aNj+s95MHl6Fhqdz0bZCEqML6aO6/Xu

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
cd055110c8a35ed64c9058ee7d777903

Files

cd055110c8a35ed64c9058ee7d777903
.exe windows:4 windows x86 arch:x86

35bd33ad3627bf1442da003feb61f093

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

EnterCriticalSection
LoadLibraryExA
LocalFree
GetStdHandle
GetOEMCP
VirtualProtect
GlobalAddAtomA
FreeConsole
RaiseException
DeleteAtom
GlobalUnlock
CloseHandle
WriteProfileStringA
GlobalFree
IsBadCodePtr
GlobalAddAtomA
HeapCreate
lstrcpyA
SetConsolePalette
LoadResource
GetLastError

user32

CloseWindow
ShowWindow
ReleaseDC
GetWindow
GetWindowTextLengthA
IsIconic
EndPaint
GetClassNameA
GetWindowTextA
BeginPaint
GetParent
GetActiveWindow
ValidateRect
GetFocus
DrawEdge
GetClassInfoExA
AlignRects
GetForegroundWindow
GetDC

mprapi

MprAdminUserClose
MprAdminUserOpen
MprAdminUserWrite
MprAdminUserGetInfo
MprAdminUserRead

linkinfo

CreateLinkInfoA

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 700KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ