dddc65a1caabd95ba32b3da6064dc96c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

dddc65a1caabd95ba32b3da6064dc96c
Size

168KB
MD5

dddc65a1caabd95ba32b3da6064dc96c
SHA1

607d59bd8f4095e5671dd7a5b214e8c54f260de5
SHA256

4203323a3e93c1f94dea1e239241fbf7a6a76353750d3fa5e33172cc7bfac3bd
SHA512

aae410d776eff86dba9d2ba45c41e2dd74086f5c773a7326ef2e6cd8ba0c0b6fcea42a27962ead9f840c0b429b706bbbd89c7be968b45e92b4441c07e9b10954
SSDEEP

3072:Ij9z9LVY9tf+F/g0db+ENeyIddP6bawEc5Frv3t/YrMvxjdryfYHk:Ij59Jq+FcEYyIddP6mg/t4MLOw

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
dddc65a1caabd95ba32b3da6064dc96c

Files

dddc65a1caabd95ba32b3da6064dc96c
.exe windows:4 windows x86 arch:x86

85d1c7943b13b3a3d2eab1b07f86cf75

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetThreadLocale
GetUserDefaultLangID
SetMessageWaitingIndicator
GetConsoleTitleA
Module32NextW
LocalCompact
GetCurrentProcess
GetNamedPipeHandleStateA
lstrcmpW
CreateSemaphoreA
ReadConsoleInputExW
ClearCommBreak
SetConsoleInputExeNameW
GetCurrentDirectoryA
GetSystemDefaultLCID
GetDiskFreeSpaceExA
lstrcmpA
FindResourceExW
GetCommandLineA
ExitProcess
GetStartupInfoA

Sections

.text
Size: 4KB - Virtual size: 137KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 152KB - Virtual size: 151KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ