cddf056d1ca2b3719e1e6773f3fa6a13 | Triage

Sharing

General

Target

cddf056d1ca2b3719e1e6773f3fa6a13
Size

24KB
MD5

cddf056d1ca2b3719e1e6773f3fa6a13
SHA1

95c5c9be5d51fe596bf77661bba611d728806b6b
SHA256

c18b471066b17ecb6d0f07874c31c8b347ccb1c2fc105c8e4efbd4dfb5e9f673
SHA512

ec9b085a075b8938f9187d22b46b4a56914849794649c618c589e20968ef3ff8574566b038ecb09aa79960ee65e2d281111bc1863b9cf302be4c3214942e2f18
SSDEEP

384:eQwsPRmXdRh39EKl7bc3Y56FgoNCemNMG:eQrud7Dlf2ry2ZmM

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
cddf056d1ca2b3719e1e6773f3fa6a13

Files

cddf056d1ca2b3719e1e6773f3fa6a13
.exe windows:4 windows x86 arch:x86

d861803a2b10a2b405a5aa9096c492a2

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

GetProcAddress
LoadLibraryA
CloseHandle
lstrlenA
GetLastError
FreeLibrary
GetTickCount
GlobalAlloc
GetCommandLineA
LocalFree
lstrcatA
LocalAlloc
lstrcpyA
GetModuleHandleA
Sleep
GetStartupInfoA
CreateEventA
GetVersionExA
GetFileSize

msvcrt

exit
wcschr
_XcptFilter
_controlfp
_exit
memmove
wcstoul
__CxxFrameHandler
toupper
wcslen
_acmdln
_except_handler3

user32

LoadIconA
GetWindowRect
MessageBoxA
DestroyWindow
SetWindowTextA
GetFocus
TranslateMessage
GetClientRect
BeginPaint
EndPaint
DispatchMessageA
ScreenToClient
DialogBoxParamA
GetMessageA
SetFocus
DefWindowProcA
CreateWindowExA

gdi32

DeleteObject
GetObjectA
GetTextMetricsA
ExtTextOutA
CreateFontIndirectA
GetTextColor
PatBlt
GetStockObject
GetBkColor
GetDeviceCaps

Sections

.text
Size: 1024B - Virtual size: 960B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 46KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ