1cdee54a7cfb55d815eaf42e3524b6805b77b0036471cdc8f90182a8cc1d72ec | Triage

Sharing

General

Target

1cdee54a7cfb55d815eaf42e3524b6805b77b0036471cdc8f90182a8cc1d72ec
Size

284KB
MD5

c6078dd8e03db47e136e8bc28468fa7f
SHA1

84c4de2e2b212ea42e921b0d89d7c3ca633db9d9
SHA256

1cdee54a7cfb55d815eaf42e3524b6805b77b0036471cdc8f90182a8cc1d72ec
SHA512

095ab0ab74b3d704408b25f940b117366014d2e1693c365f71aa2603c0e9bae1abd3a87e91620229a129078027d5aa44f2c9268fa81e702d3eea9958eca740c9
SSDEEP

6144:rL8ej3IoO7UaO5QhDAGqZmPe1fgJj1BBV+UdvrEFp7hKa:rLbriTh6e62hBBjvrEH71

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1cdee54a7cfb55d815eaf42e3524b6805b77b0036471cdc8f90182a8cc1d72ec

Files

1cdee54a7cfb55d815eaf42e3524b6805b77b0036471cdc8f90182a8cc1d72ec
.exe windows:4 windows x86 arch:x86

e4563b2e65fc5d4b5661a5b63d45b0e1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

TranslateMessage
SetWindowTextA
CreateWindowExA
SendMessageA
RegisterClassExA
PostQuitMessage
GetMessageA
FindWindowA
DispatchMessageA
DefWindowProcA

kernel32

GlobalReAlloc
LoadLibraryA
GetProcAddress
WaitForSingleObject
Sleep
SizeofResource
SetEvent
LoadResource
GlobalLock
GlobalFree
GlobalAlloc
CloseHandle
CreateEventA
CreateThread
ExitProcess
ExitThread
FindResourceA
GetModuleFileNameA
GetModuleHandleA

winmm

mmioAscend
mmioClose
mmioDescend
mmioOpenA
mmioRead
mmioSeek
waveOutClose
waveOutOpen
waveOutPrepareHeader
waveOutReset
waveOutUnprepareHeader
waveOutWrite

Sections

.text
Size: 22KB - Virtual size: 21KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 27KB - Virtual size: 96KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 156KB - Virtual size: 156KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ