fc78c6ed8070a8e7340a89154efd70867c3bfb48053fd0c5cc4379db7f157723 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

fc78c6ed8070a8e7340a89154efd70867c3bfb48053fd0c5cc4379db7f157723
Size

120KB
MD5

5b2881eab1bdacb4806e22526f2ad347
SHA1

87960ca7567327487c89a94f1b1012a783403d0e
SHA256

fc78c6ed8070a8e7340a89154efd70867c3bfb48053fd0c5cc4379db7f157723
SHA512

600650d9a99b67f69ce4d15beceb1c1b62b5f75a8cf028c7898f0e540254996695b6f4d58366bb0a9651347fa3db614f81223591581da1f91c8ef19bb2c6f380
SSDEEP

3072:qYBXzK/VWUU/DDgwR8C0ccK4NxvY9ehiMWCorf:3JKkU6PD8DcL8xjiMWCorf

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fc78c6ed8070a8e7340a89154efd70867c3bfb48053fd0c5cc4379db7f157723

Files

fc78c6ed8070a8e7340a89154efd70867c3bfb48053fd0c5cc4379db7f157723
.dll windows:4 windows x86 arch:x86

0f44bf2b3b0b8d5ecae5689ff1d0e90d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CreateProcessA
CloseHandle
WriteFile
CreateFileA
GetTickCount
lstrcpyA
lstrcatA
lstrlenA
GetTempPathA
SetErrorMode

user32

wsprintfA

Sections

.text
Size: 119KB - Virtual size: 118KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 376B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ