fc0dca326046b0364bd8e554c3533945283fc8f1996dac88e750792975fc5ab0 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

fc0dca326046b0364bd8e554c3533945283fc8f1996dac88e750792975fc5ab0
Size

3.4MB
MD5

48f0641d2cbe1035c10569cd61302de4
SHA1

45ea05d9ce3113ab059df5c7f5ccc1b0f397c52c
SHA256

fc0dca326046b0364bd8e554c3533945283fc8f1996dac88e750792975fc5ab0
SHA512

6931ecc96a1fe6fd6eb52f82e23734a97c9f2eb4e72b9e97912f2bd1dbc0e25a91bce1f29db68a4274148450946ddee5f791b7d0db98d0c4b6049708b7a2e654
SSDEEP

49152:1pkriHKXMKqD8tQoNM4+y8jklJBEQNjU9M1luEsrXLUKQ:A2qXMKk8tROPklJBsVHrQ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fc0dca326046b0364bd8e554c3533945283fc8f1996dac88e750792975fc5ab0

Files

fc0dca326046b0364bd8e554c3533945283fc8f1996dac88e750792975fc5ab0
.exe windows:4 windows x86 arch:x86

baa93d47220682c04d92f7797d9224ce

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpy

comctl32

InitCommonControls

Sections

Size: 228KB - Virtual size: 228KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 32KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

urpbettr
Size: 3.1MB - Virtual size: 3.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

kupdshdn
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE