c74b391e1b0f8201a0d26aca37ec4230N[.]exe | Triage

Sharing

General

Target

c74b391e1b0f8201a0d26aca37ec4230N.exe
Size

275KB
MD5

c74b391e1b0f8201a0d26aca37ec4230
SHA1

1897e2fb4d3e40e8ee1bc28ae4b391b6d7b4ae23
SHA256

3385a4c9ac96a13d0242a8e41517aa5026cc32979d94a5bda774ecc54b453b96
SHA512

d011b5e8acac7994979b5eaf681d9cd266b074f04f4387e41124e813b52d083ce63370f7857fea517ec7ccdf6809de3f02b5ed56f8ac98fef90be345baa91808
SSDEEP

6144:hgdM+EzH15J46pP5eYRDuYFyhmulX7yOhuY2QYRDDqeiFXO:a4zVT3e0DuKyAuRuOhuY2fJDqeCXO

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c74b391e1b0f8201a0d26aca37ec4230N.exe

Files

c74b391e1b0f8201a0d26aca37ec4230N.exe
.exe windows:4 windows x86 arch:x86

e6aabed09928adeeed2654cd19b68e0c

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

winmm

mciSendCommandA
sndPlaySoundA

kernel32

SetLastError
GetStdHandle
TerminateProcess
HeapSize
AddAtomA
GetStartupInfoA
GetEnvironmentStrings
SetEndOfFile
TlsAlloc
HeapCreate
FreeEnvironmentStringsW
GetCurrentProcess
TlsSetValue
SetHandleCount
GetACP
EnumResourceNamesA
VirtualFree
GetEnvironmentStringsW
TlsFree
FreeEnvironmentStringsA
GetVersionExA
VirtualAlloc
GetModuleFileNameA
GetFileType
TlsGetValue
IsBadStringPtrW
IsBadWritePtr
GetLocaleInfoA
InterlockedExchange
GetSystemInfo
UnhandledExceptionFilter

shlwapi

PathAddBackslashA

setupapi

CM_Get_Depth
SetupDiGetDeviceRegistryPropertyW
CMP_WaitNoPendingInstallEvents
CM_Get_DevNode_Status

Sections

.text
Size: 139KB - Virtual size: 139KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 132KB - Virtual size: 132KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 392KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ