cf4ed3de452233b68b8a413062398900N[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

cf4ed3de452233b68b8a413062398900N.exe
Size

17KB
MD5

cf4ed3de452233b68b8a413062398900
SHA1

82cea94f78000fa2b1c481c61ee186afcbf977a4
SHA256

902a8584d19c65013d68570a56b791ed9e74b92557eb9ba82c1a27b3306510a4
SHA512

338ef64990b6142764d78d158d0317c800adb57b3a7afd83fd1441b1a888b0ef66e458ce888204715e9c4e2c0ef2ec4cd389bdce43f640528d858ab595cba539
SSDEEP

192:6jXy6E8M61xkCwfzdRAAZ68ZUN63XinAiTyeCw8fqDzSF5iM3:56s/dRAA7xHcTynYNi

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
cf4ed3de452233b68b8a413062398900N.exe

Files

cf4ed3de452233b68b8a413062398900N.exe
.exe windows:4 windows x86 arch:x86

88b61c0beb05f36951358c043af52ad7

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryExA
lstrlenA
WaitForMultipleObjects
HeapCreate
HeapReAlloc
GetStdHandle
SetConsoleCP
GetConsoleCP
GetSystemDefaultLangID
GetModuleHandleA
GetVersion
GlobalUnlock
CloseHandle
WaitForSingleObject
CompareFileTime
GetCommandLineA
GetAtomNameA
VirtualProtect
SuspendThread
GetTickCount
InterlockedExchange

user32

InvertRect
SetPropA
DialogBoxParamA
FindWindowA
IsDialogMessage
EnableScrollBar
CreateMenu
DrawCaption
CreateIcon
FillRect
InsertMenuA
GetKeyState
GetKeyboardLayout
DragObject
DestroyMenu
CopyImage
GetCursorInfo
SetScrollInfo
DispatchMessageA
GetDlgItem
SetWindowPos

advapi32

RegEnumKeyA
RegEnumValueA
RegQueryInfoKeyA
RegCreateKeyExA
RegCloseKey

uxtheme

GetThemeColor

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 522B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ