cb2bc00c82283faf64bb19361bb68dd442c51e801388e63f2f55a427134d4c16 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

cb2bc00c82283faf64bb19361bb68dd442c51e801388e63f2f55a427134d4c16
Size

59KB
MD5

dc3352a1bfaa1f239f370e2e00cd4b5a
SHA1

bfe1897682915d404b82bf4ea3b478010f16eae0
SHA256

cb2bc00c82283faf64bb19361bb68dd442c51e801388e63f2f55a427134d4c16
SHA512

d4397ea2f0d5f7d44f7b847e2e25fa70e335acb1bd5a66d0c3bd04fd3e0bc8004ee4eb5eba1a69785cc3605eafe134e3a2d2b282ed727e7d07c27b6867c44f19
SSDEEP

768:61SRDXnZZJudByo4VtvCYr4oQ3sWwUWUIawfQalLbsrw7WC:ZRD3ayH/839iaVucXC

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
cb2bc00c82283faf64bb19361bb68dd442c51e801388e63f2f55a427134d4c16

Files

cb2bc00c82283faf64bb19361bb68dd442c51e801388e63f2f55a427134d4c16
.exe windows:5 windows x86 arch:x86

fd1d68a169a2a7ae3397a585f25bba38

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

cabinet

ord13

mscms

RegisterCMMW

kernel32

GetLastError
ExitProcess
GetModuleHandleW

Sections

.text
Size: 8KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 12.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 17KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ