cf32f04ac10c489f7342249d48b58bee99d709d50333792cd2f26b41cb537bfc | Triage

Sharing

General

Target

cf32f04ac10c489f7342249d48b58bee99d709d50333792cd2f26b41cb537bfc
Size

3.1MB
MD5

0c98babb4bcb4c169a0f2d7e11919937
SHA1

024980e1fd976b46b1f3c68c5030baedac070e91
SHA256

cf32f04ac10c489f7342249d48b58bee99d709d50333792cd2f26b41cb537bfc
SHA512

8dd60f6df84e71e7ab47c2a31a4688471bfe6c04294cd6151cd90acd3d2039ad752a52a5275ea5f900baa4a069f4094276f9e5595dfd8015508733f7de028d4f
SSDEEP

49152:ULRlwpc5dNLT87dGJiTmY1L8HmZBYO5w4f4WDqdVf1S8PSi4HCU2olbBOQGCK:UVqpcZQ4MrZBI4f4WD+BP1WCUrloQ/

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
cf32f04ac10c489f7342249d48b58bee99d709d50333792cd2f26b41cb537bfc

Files

cf32f04ac10c489f7342249d48b58bee99d709d50333792cd2f26b41cb537bfc
.exe windows:4 windows x86 arch:x86

4fcb07a0f003a67c79bec37fe7240dd5

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleA

user32

SystemParametersInfoW

advapi32

OpenServiceW

Sections

Size: - Virtual size: 2.9MB

IMAGE_SCN_MEM_READ

Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 93KB - Virtual size: 96KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE