1cbe6d974a70150eaf4331c0e6c9a840N[.]exe

General

Target

1cbe6d974a70150eaf4331c0e6c9a840N.exe
Size

73KB
MD5

1cbe6d974a70150eaf4331c0e6c9a840
SHA1

6406d59ef2b426b4ddaed9cd4b37e63469cede70
SHA256

481c79d26b2a939d85bb67602d9758b0a755141dfeaded680373e21af1d7b2ff
SHA512

c6fff0b3e599c56aba863edf0b60f7b40aff3029fd7923c4ca8a4be90470fa991415517863a673f9f7a0b89fba92163bd4e378382696ef5bebefd4182b05aa1d
SSDEEP

1536:U65Wgq/a+ZzIXwlg8/xzmlZOq5Onsmmde8y57i9LP8iboO:B5WgGa+Zzywlg8/5mlZOq5Ox8y5m9LPe

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1cbe6d974a70150eaf4331c0e6c9a840N.exe

Files

1cbe6d974a70150eaf4331c0e6c9a840N.exe
.dll windows:4 windows x64 arch:x64

8d00881aac36c82ddf61d190a3856b57

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

Imports

libmx

mxIsSingle
mxIsDouble
mxGetNumberOfElements
mxGetDimensions_700
mxGetNumberOfDimensions_700
mxCreateNumericArray_700
mxGetPr

libmex

mexErrMsgTxt

kernel32

RtlUnwindEx
HeapSize
RtlLookupFunctionEntry
RtlVirtualUnwind
GetCurrentThreadId
FlsSetValue
GetCommandLineA
HeapFree
GetVersionExA
HeapAlloc
GetProcessHeap
GetProcAddress
GetModuleHandleA
ExitProcess
FlsGetValue
TlsFree
FlsFree
SetLastError
GetLastError
TlsSetValue
FlsAlloc
Sleep
HeapSetInformation
HeapCreate
HeapDestroy
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
DeleteCriticalSection
GetModuleFileNameA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
UnhandledExceptionFilter
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
GetCPInfo
GetACP
GetOEMCP
TerminateProcess
GetCurrentProcess
SetUnhandledExceptionFilter
IsDebuggerPresent
RtlCaptureContext
RaiseException
WriteFile
LeaveCriticalSection
EnterCriticalSection
LoadLibraryA
InitializeCriticalSection
HeapReAlloc
LCMapStringA
MultiByteToWideChar
LCMapStringW
GetStringTypeA
GetStringTypeW
GetLocaleInfoA

Exports

Exports

mexFunction

Sections

.text
Size: 49KB - Virtual size: 49KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 708B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8d00881aac36c82ddf61d190a3856b57

Headers

File Characteristics

Imports

libmx

libmex

kernel32

Exports

Exports

Sections

.text Size: 49KB - Virtual size: 49KB

.rdata Size: 13KB - Virtual size: 12KB

.data Size: 5KB - Virtual size: 9KB

.pdata Size: 3KB - Virtual size: 2KB

.reloc Size: 1024B - Virtual size: 708B

.text
Size: 49KB - Virtual size: 49KB

.rdata
Size: 13KB - Virtual size: 12KB

.data
Size: 5KB - Virtual size: 9KB

.pdata
Size: 3KB - Virtual size: 2KB

.reloc
Size: 1024B - Virtual size: 708B