cb9ab67280b35763f39c72173b20be40N[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

cb9ab67280b35763f39c72173b20be40N.exe
Size

92KB
MD5

cb9ab67280b35763f39c72173b20be40
SHA1

d61b6742ef3dd2140f97c8b01a46100136a6d18f
SHA256

1755765086157933332c2def74a8f6a32fc8ca8cd333a1d2ab8585b0925d5f7b
SHA512

293bbafe4530d8e12c0ee52b36b9282617bc5f85657324e3b28c14900b82e1ee0bb6fd6ad8566eb32d27877e1cbe6adf2ef5b2a3c40ce03a0456932633c2afbf
SSDEEP

1536:luoqkQ7LJvBfuY0p/DCTOFa+69qOEebY1QgUbW3h+Aqyf/Wcaxuu0H:koqkQ75Bfsp/eTOod9qJUGx1lu0H

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
cb9ab67280b35763f39c72173b20be40N.exe

Files

cb9ab67280b35763f39c72173b20be40N.exe
.exe windows:4 windows x86 arch:x86

1bd6a1cccc0acf0bc50f0359268b4fc1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryA
GetProcAddress
VirtualAlloc
VirtualFree
ExitProcess
GetModuleHandleA

msvbvm60

_CIcos

Sections

pec1
Size: 62KB - Virtual size: 184KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 27KB - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE