5cb7abaa855993bb21b44b389d22a6c05fb39ae55f6a048854abc685112e2e70N | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5cb7abaa855993bb21b44b389d22a6c05fb39ae55f6a048854abc685112e2e70N
Size

72KB
MD5

f8912cff6ce379b6358517148a5f9440
SHA1

da619d16e13343b0e52f569e1cbd475aa80bf44f
SHA256

5cb7abaa855993bb21b44b389d22a6c05fb39ae55f6a048854abc685112e2e70
SHA512

35261aa3a6c410e5065ff6545e6ab571e9f51c74c3dced809e563aa2b88fbe1b4c509fb587c3647d43e77ff07b3dfec31b13652eb2e79aa64ee8c131f0febdd3
SSDEEP

1536:2KTWJ+SMu4PyTBCq2yypOSuyZdHhz2cjZqLow6a7rlBq0dj1SmfpxGQP85hFuv:2iWJ+SLYbyOqqRooda7rb5fVPqhE

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5cb7abaa855993bb21b44b389d22a6c05fb39ae55f6a048854abc685112e2e70N

Files

5cb7abaa855993bb21b44b389d22a6c05fb39ae55f6a048854abc685112e2e70N
.exe windows:4 windows x86 arch:x86

10aaa284dbf32d6d88fb86e92071d2fb

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryA
VirtualAlloc
VirtualFree
UnmapViewOfFile
Sleep
GetProcAddress
GetModuleFileNameA
ExitProcess
CreateThread
SetErrorMode
VirtualProtect
GetPrivateProfileStringA
lstrlenA
WritePrivateProfileStringA

msvcrt

memcpy

user32

wsprintfA
MessageBoxA

wininet

InternetOpenUrlA
InternetReadFile
InternetCloseHandle
InternetOpenA

advapi32

RegSetValueExA
RegOpenKeyA
RegCloseKey

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 67KB - Virtual size: 66KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE