cdad924377adfb4580d4460dc79fb913 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

cdad924377adfb4580d4460dc79fb913
Size

128KB
MD5

cdad924377adfb4580d4460dc79fb913
SHA1

16ee164a037bf744d4e1a906e9fefb4bd3eed842
SHA256

fb0365b19985390b3d54929bddc6dc1ea412b8d7114df526ded853d720692044
SHA512

4cedec22dd024783f132b2649d9448f508adcb27efb6e6bc8fdab8e85411dca6d477476a151c89c29dd8cfebdf1406519a4469ba98fd6207b1d1e06caadd8814
SSDEEP

3072:fBk97Lu6lyUq07aXJMYs1EwPoa8SGwLZgBBPMJ6YCg2TK6sENPD1I+nh:e1q0WZUNQa8GLKP3YCg2TDs+PDi+nh

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
cdad924377adfb4580d4460dc79fb913

Files

cdad924377adfb4580d4460dc79fb913
.exe windows:4 windows x86 arch:x86

804d4182e7c79ce1cb5257bf1178016f

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

GetPixel
SetMapMode
EndPath
RestoreDC
MoveToEx
BeginPath
OffsetViewportOrgEx
GetStockObject
GetTextMetricsA
SelectPalette
GetDCOrgEx
EndDoc
SetWindowExtEx
GetDeviceCaps
SetTextColor
ExcludeClipRect
SetBrushOrgEx
LineTo
GetPaletteEntries
SetBkMode

user32

GetMessagePos
GetInputState
GetDesktopWindow
CharNextA

kernel32

GlobalFindAtomA
GetACP
GetProcessHeap
GetCurrentThreadId
GetModuleHandleA
GetDriveTypeA
SetCurrentDirectoryA
GetCurrentThread
GetOEMCP
IsDebuggerPresent
GetCurrentProcessId
GetLastError
DeleteFileA
lstrcmpiW
GetVersion
lstrlenA
RemoveDirectoryA
GetTickCount
GlobalFindAtomW
GetCommandLineA
CopyFileA
GetCurrentProcess
DeleteFileW
VirtualAlloc
lstrlenW
SetLastError

comctl32

InitCommonControls

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 175KB - Virtual size: 175KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 79KB - Virtual size: 78KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ