cd64da894e6ee71048bfec9ba4bfc16d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

cd64da894e6ee71048bfec9ba4bfc16d
Size

44KB
MD5

cd64da894e6ee71048bfec9ba4bfc16d
SHA1

79a5754d7bb38ca5305917f207aecc61170379ae
SHA256

bf533af9cf8d012b99d6ad25ac3bfc067316f7b9f55a88164a07ea57e642a180
SHA512

a519adb7dc2947b68783f29201cd3c0f89eedfedbad067d6ccd103d22807d6e7152177c09d01c75690f79bc8b1e52cf6f3da51ce8e3d611b60e5e1eae381d335
SSDEEP

768:Pxl7DDTBeid/TeiZRVWRBwkXno0L7UTLuSnaUrvO:5ltXkXo8UTaS7vO

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
cd64da894e6ee71048bfec9ba4bfc16d

Files

cd64da894e6ee71048bfec9ba4bfc16d
.exe windows:4 windows x86 arch:x86

482ea7b49481ccb9a2f155f65a5d858f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
GetModuleHandleA
GetTickCount
HeapAlloc
GetCommandLineA
GetStartupInfoA
GetCommandLineA
GetProcessHeap

user32

MessageBoxA

Sections

.text
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ