c0dc0ad397149f0149431c30e44cced22a3ecc3d98056ac2e352c1a151655d02[.]exe | Triage

Sharing

General

Target

c0dc0ad397149f0149431c30e44cced22a3ecc3d98056ac2e352c1a151655d02.exe
Size

2.0MB
MD5

ef087515e2c4d82f09072c006b871fd9
SHA1

b99b91e36f39ce797b38bf7111a3a20293d6c98d
SHA256

c0dc0ad397149f0149431c30e44cced22a3ecc3d98056ac2e352c1a151655d02
SHA512

cf3d24be2a44073da9965095a5ca322350d77887ce919b31959080874c67d87c295545259b5afa93fb77d77c856aff18ac67d264b4e658e296d387b6190680ca
SSDEEP

49152:iYSRnUkK3t97LFnCT30FffPQbNHhFqr6LcjDHvv/OS6pTa6w:J4nUk8G3MHYPsrPzj6han

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c0dc0ad397149f0149431c30e44cced22a3ecc3d98056ac2e352c1a151655d02.exe

Files

c0dc0ad397149f0149431c30e44cced22a3ecc3d98056ac2e352c1a151655d02.exe
.exe windows:6 windows x86 arch:x86

2eabe9054cad5152567f0699947a2c5b

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpy

Sections

Size: 432KB - Virtual size: 432KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 936B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 2.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

dggzgirf
Size: 1.6MB - Virtual size: 1.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

qbigfjhx
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.taggant
Size: 8KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE