4c102f72cf215c188ed4000a47eb09e8edf82c054a36e0eb3d95093f2adba2e1N[.]exe | Triage

Sharing

General

Target

4c102f72cf215c188ed4000a47eb09e8edf82c054a36e0eb3d95093f2adba2e1N.exe
Size

174KB
MD5

f3b5c71429882508a16b171bfd6e3d50
SHA1

5ba90d177031465c2b8d9f94090884d882ec3d17
SHA256

4c102f72cf215c188ed4000a47eb09e8edf82c054a36e0eb3d95093f2adba2e1
SHA512

d9a64d326b031cc3f400b7134bc39a2d99f57a7590fdcbcc5be794b95b2554947a6d527e4d25540e945a3480fee853e533018b6d51d7d3a0f795f44d587c6073
SSDEEP

3072:2vW+2IUadlM4GD8hzSyM6kb5G1zIRObix0AoMBiOKoYkEI52Ap+hlmlzeHh4/T8I:2vW+Br6epkb5G1MRN0cBiroYI2Qlzb8I

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4c102f72cf215c188ed4000a47eb09e8edf82c054a36e0eb3d95093f2adba2e1N.exe

Files

4c102f72cf215c188ed4000a47eb09e8edf82c054a36e0eb3d95093f2adba2e1N.exe
.exe windows:4 windows x86 arch:x86

fb52a06c7300e0a63e0318474fea93df

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

SetEnvironmentVariableW
ConvertFiberToThread
CompareStringA
SystemTimeToFileTime
GetShortPathNameW
FindClose
SetThreadPriority
LocalFileTimeToFileTime
GetLocalTime
FileTimeToSystemTime
SetCurrentDirectoryW
FindResourceW
GetStringTypeW
EnumResourceNamesW
RegisterWaitForSingleObject
FindFirstFileW
LoadResource
FileTimeToLocalFileTime
FindNextFileW
SetErrorMode
FreeLibrary
SearchPathW

user32

GetCapture
RealGetWindowClassA
ValidateRect
ValidateRgn
ReleaseCapture
SetCapture
ExcludeUpdateRgn
InvalidateRgn
GetUpdateRgn

Sections

.text
Size: 108KB - Virtual size: 107KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 940B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 63KB - Virtual size: 63KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.imul
Size: 512B - Virtual size: 384KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ