cdb8cabba2fc31b9d51eb2056c58e9a5 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

cdb8cabba2fc31b9d51eb2056c58e9a5
Size

48KB
MD5

cdb8cabba2fc31b9d51eb2056c58e9a5
SHA1

851453550dbf5a092095361b400398277756e31f
SHA256

35f3ef7fbaf500966889367cb8b68709a4b8c2453b5dd05e65623cf002ffab27
SHA512

8560eba49c8590e588c521f3c9f0bd0e2bcc142150986399510c1bc7548eff5b17d425df988fd7baf66f452cc0bc6d5175623d3fb690fb6dd1ddea18bbd9535c
SSDEEP

1536:P3GPE9msTjr6IUPzHeKCAQ38GxjehnETTe/5Dr:v8SrdUPbeKCn8GxSVkcFr

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
cdb8cabba2fc31b9d51eb2056c58e9a5

Files

cdb8cabba2fc31b9d51eb2056c58e9a5
.exe windows:1 windows x86 arch:x86

4b07572bf77e2a88e1284676f0064f10

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ExitProcess
GetModuleHandleA
Sleep

gdi32

DeleteObject

user32

CreateWindowExA
DefWindowProcA
DispatchMessageA
GetClientRect
GetMessageA
LoadCursorA
LoadIconA
LoadMenuA
MessageBoxA
MoveWindow
PostQuitMessage
RegisterClassA
SendMessageA
SetFocus
TranslateMessage

advapi32

EnumServicesStatusA
GetCurrentHwProfileA
GetTrusteeNameA
GetUserNameA

Sections

.text
Size: 1024B - Virtual size: 676B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 740B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 45KB - Virtual size: 45KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE