cumpapiNEW[.]mp4 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

cumpapiNEW.mp4
Size

209KB
MD5

7c56203cbcae1cbecb470f73f00c15c8
SHA1

1dc818c0d2363193e5c18c76ea3d3a1dee23f6e9
SHA256

643797f0d561ddb4734384c6f920a8b8035468810b9df6678b612cfc51ceb131
SHA512

ad60d7001fb7f6e1cb9a210f8b77d99800d4eadfc9c1d692f5da9ecf74a8fe36d828a84c4efa1a2d0768239ec42a42ee0ad3dde9e19ab7dbc609862f5e9cac09
SSDEEP

6144:5iA9+9lclQzvQhbdC/vsvmy/GfJTJQPHJDiL25a50m8iOpZyZwJD:5iACzvkC/vsvmy/GfJTJQPHJDiL25a5Y

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
cumpapiNEW.mp4

Files

cumpapiNEW.mp4
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

9#{e{kU
Size: 61KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 145KB - Virtual size: 144KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ