c47201cb15dbabd5faa683e9feea3bf5ff2608633420f17a4812618af1890ae1N[.]exe

General

Target

c47201cb15dbabd5faa683e9feea3bf5ff2608633420f17a4812618af1890ae1N.exe
Size

120KB
MD5

79940da55157f97ec8fffd21fd142d60
SHA1

17b6ee5677fdcc88d34ee9b1123c13edc2619c6f
SHA256

c47201cb15dbabd5faa683e9feea3bf5ff2608633420f17a4812618af1890ae1
SHA512

e5ca181817cb36e2a3ec3cd75f71aa50d596a2f23c8ebb6c84bbf1a1b6f0fd1d1612469447984b3d2cfe3eb5d1437ebcb7e7f1fef36acb8e02cf78279e1e7758
SSDEEP

1536:zKhft65BoLc7R5CYPZzXu7iDAzdOyDQJML7/9Ad+ekRwVqwQwbtTW9vKjr6KYR20:EOW4VDs/DQ8AvVmw936Ka2KmrS65COE

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c47201cb15dbabd5faa683e9feea3bf5ff2608633420f17a4812618af1890ae1N.exe

Files

c47201cb15dbabd5faa683e9feea3bf5ff2608633420f17a4812618af1890ae1N.exe
.exe windows:4 windows x86 arch:x86

831ad354320e74bd3404eded90801e7c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

WriteConsoleW
HeapDestroy
CreatePipe
GetProcessHeap
CopyFileA
GetStartupInfoA
DisconnectNamedPipe
GetStdHandle
GetCommandLineA
SetEvent
GetCurrentDirectoryA
ResumeThread
GetFileAttributesW
WriteConsoleW
DeleteFileA
lstrcpyA
lstrlenW
WriteConsoleW
GetModuleHandleA
GetPriorityClass
VirtualProtect

mmcndmgr

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllRegisterServer

cryptui

LocalEnroll
CryptUIWizImport
CryptUIWizBuildCTL
CryptUIDlgViewContext
WizardFree
DllRegisterServer
CryptUIWizDigitalSign
DllUnregisterServer
CryptUIStartCertMgr
LocalEnroll
WizardFree
CryptUIWizBuildCTL
CryptUIWizExport

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 264B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 110KB - Virtual size: 110KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 177B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.impdata
Size: 512B - Virtual size: 195B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

831ad354320e74bd3404eded90801e7c

Headers

File Characteristics

Imports

kernel32

mmcndmgr

cryptui

Sections

.text Size: 3KB - Virtual size: 2KB

.data Size: 4KB - Virtual size: 3KB

.rdata Size: 512B - Virtual size: 264B

.rsrc Size: 110KB - Virtual size: 110KB

.rdata Size: 512B - Virtual size: 177B

.impdata Size: 512B - Virtual size: 195B

.text
Size: 3KB - Virtual size: 2KB

.data
Size: 4KB - Virtual size: 3KB

.rdata
Size: 512B - Virtual size: 264B

.rsrc
Size: 110KB - Virtual size: 110KB

.rdata
Size: 512B - Virtual size: 177B

.impdata
Size: 512B - Virtual size: 195B