cd13434e9813b538cf3ac265c1bb9276 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

cd13434e9813b538cf3ac265c1bb9276
Size

93KB
MD5

cd13434e9813b538cf3ac265c1bb9276
SHA1

a83f40efe50a8acb09ecd25ff37e635d41bacc01
SHA256

7113a5dc8e8a62ba95a6d6fe7e22ed717e1662c0f588dcb52fc2d6327009219d
SHA512

3e16d31f95c573057b01e75434ec86f2c5e5e5431d375a412ce998e85cce8ccbed8d3b583307e93b9ab27c278e4b36ca62057a6e6d3ac236e29605931a5132c7
SSDEEP

1536:HYkmZeifsRsNmE+RZBjeTiDBMjHF3Yf6A89lZ6MZelUoC2nTnu2CwyH2:fifrNmbRZBqTSibF3N9z6MeULSnuT2

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
cd13434e9813b538cf3ac265c1bb9276

Files

cd13434e9813b538cf3ac265c1bb9276
.exe windows:4 windows x86 arch:x86

5d5bbe6fd02136617135d9b328e77035

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

DestroyCaret
DeleteMenu
DefDlgProcA
CreateIconFromResourceEx
CopyImage
CloseWindow
CharToOemA
CharPrevA
CharLowerA
ChangeMenuA
ActivateKeyboardLayout

kernel32

GetStartupInfoA
lstrlenA
lstrcpynA
lstrcpyA
lstrcmpiA
lstrcmpA
lstrcatA
WriteFile
VirtualAlloc
UnmapViewOfFile
TlsSetValue
TlsGetValue
EnterCriticalSection
EnumResourceLanguagesA
EnumResourceTypesA
ExitProcess
FreeResource
GetLastError
GetLocalTime
GetSystemTimeAsFileTime
GetTimeFormatA
OpenFile
OpenFileMappingA
RtlUnwind
TlsFree

Sections

.text
Size: 35KB - Virtual size: 35KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 46KB - Virtual size: 45KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE