c434d803c3447a9c7ebf5da4fddaa671184dc6323d08def7d04211903ece1fb4 | Triage

Sharing

General

Target

c434d803c3447a9c7ebf5da4fddaa671184dc6323d08def7d04211903ece1fb4
Size

56KB
MD5

af973a43b7e98e94503086ba069d93d5
SHA1

bdc5541e9438f4781f2952bb9dfde5804371fd10
SHA256

c434d803c3447a9c7ebf5da4fddaa671184dc6323d08def7d04211903ece1fb4
SHA512

ae636fa440ce62bd84894fa429217240a115faf53a36112f2b923fa2ab090522c8b5c0080a8b103f370b1b193434a2c14cf518487ec54eaafa16c7002f6ce2d6
SSDEEP

768:bLplGsqtAxZaT67LsOrBwDLzjZZNfzgoTjnJxOUzLKVyK/W2zf:bLTGsJxZae7LsOWBVjnJUU3KV

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c434d803c3447a9c7ebf5da4fddaa671184dc6323d08def7d04211903ece1fb4

Files

c434d803c3447a9c7ebf5da4fddaa671184dc6323d08def7d04211903ece1fb4
.exe windows:5 windows x86 arch:x86

6dfbc160505aa2f7205766eaa6fe72a1

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

CreateWindowExA

Exports

Exports

ServiceMain

Sections

.text
Size: 44KB - Virtual size: 43KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: - Virtual size: 96B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 93B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ