caaa2cf133115f9613c218e25733b870N[.]exe | Triage

Sharing

General

Target

caaa2cf133115f9613c218e25733b870N.exe
Size

92KB
MD5

caaa2cf133115f9613c218e25733b870
SHA1

bdb80f9a4920407599f246687164fbf0a7e73bf5
SHA256

7b7e6f20dd1933c8ef8e122a3ce5cf6159bf923a08995af8ca08be420983c73d
SHA512

993b0be420753d1871d1f8cf8a1c26bfdc50a77df15cd777fe7d6c87ce0f055bbb28293627803bb4ab450d00d66c47f8651f48161b49d2b13c4be2610a8a411a
SSDEEP

1536:pzGWObbrGNQwNmyREVuXBYWBNohFQXJAKYzDH7MS38lL9IB8m8s1PeMj6rS/7P:tfO/kQ2DEVsBRAKMDHAS3Y9UBH

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
caaa2cf133115f9613c218e25733b870N.exe

Files

caaa2cf133115f9613c218e25733b870N.exe
.exe windows:5 windows x86 arch:x86

4079ab06742fe27bc66bae4c01daf2ab

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

EndPaint
DestroyMenu
CheckMenuRadioItem
GetWindowLongA
EnableMenuItem
BeginPaint
LoadIconA
LoadCursorA
CreatePopupMenu
SetWindowTextA
RegisterClassExA
CreateWindowExA
ShowWindow
UpdateWindow
GetMessageA
TranslateMessage
DispatchMessageA

gdi32

CreateSolidBrush
DeleteObject
MoveToEx
GetBkColor
CreateHatchBrush
GetStockObject

ole32

StringFromCLSID
ProgIDFromCLSID
GetConvertStg
CreateItemMoniker
OleRegGetMiscStatus
CreateObjrefMoniker
CoInitialize
OleIsCurrentClipboard

oleaut32

CreateErrorInfo

kernel32

GlobalFree
EnterCriticalSection
InitializeCriticalSection
LoadLibraryA
GetModuleHandleA
GetLastError
GetACP
HeapAlloc
HeapCreate
GlobalAlloc
GetVersionExA
DeleteCriticalSection
LeaveCriticalSection
FreeLibrary
GetCommandLineA
GetStartupInfoA

Sections

.text
Size: 88KB - Virtual size: 87KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE