cbe64286e4f8b6551b1dc36115033c00N[.]exe | Triage

Sharing

General

Target

cbe64286e4f8b6551b1dc36115033c00N.exe
Size

24KB
MD5

cbe64286e4f8b6551b1dc36115033c00
SHA1

ebf483742424470679c21a0434acf6497b091821
SHA256

23dfa1f148b38d8021ce83a270bcab138f17bbc34bdf8691e2eb0650de8cfd9b
SHA512

1a7955d6d6e79e6b55a457064fff7fc82dc808fce9f1caac30bbd91e16209d27c8076e71f0f7a68da72b0adffdeb86c072feb6cfb659efa639afb69a9504ce78
SSDEEP

384:4p0rr7HBOoxG5eTc9ykOh6GrYEOlOKDiKDiKD:4mldc96jcR

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
cbe64286e4f8b6551b1dc36115033c00N.exe

Files

cbe64286e4f8b6551b1dc36115033c00N.exe
.exe windows:4 windows x86 arch:x86

f305e57d810020d1eef2dbc2e8e39b91

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
GetCurrentThread
LocalFree
VirtualAlloc
LoadLibraryA
GetThreadLocale
GetFileType
GetSystemInfo
GetModuleHandleA
GetVersionExA
CloseHandle
LocalAlloc
GetLastError

user32

GetFocus
GetKeyState
DispatchMessageA
TranslateMessage
EndPaint
GetMessageA
CharNextA

advapi32

RegOpenKeyA
RegOpenKeyW

Sections

.text
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 662B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ