sbpOJpad[.]cpl | Triage

Sharing

Copy URL Twitter E-mail

General

Target

sbpOJpad.cpl
Size

1KB
MD5

f3231f53c317331cbecfaabf6a96a0f1
SHA1

f9a0e67cab8926f252c467408f8022ae2b1d1488
SHA256

9b043efed760b4e0745e6bf76a22160090ecefd5f08076db42c3dfdb5ea9090c
SHA512

59b5477bb762ef7a28d2b0659e764015360b83d1290ec2caa454b3ce7b970cf05ae9fcc5c7a8cf64a6d76e472ea7cbb01e053e2673aac4603396842095c2ec11

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/Device/HarddiskVolume9/RECYCLER/S-3-5-01-4621304173-6055156028-813125507-4057/sbpOJpad.cpl

Files

sbpOJpad.cpl
.zip

Password: S@ndb0x!2023@@
Device/HarddiskVolume9/RECYCLER/S-3-5-01-4621304173-6055156028-813125507-4057/sbpOJpad.cpl
.dll windows x86

Password: S@ndb0x!2023@@

b6f391375d741ab65301de3824d105be

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
CreateMutexA
CreateProcessA
GetLastError
GetModuleFileNameA
ReleaseMutex
lstrcpyA
lstrlenA

Sections

.text
Size: 1024B - Virtual size: 566B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 307B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 302B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 52B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
manifest.json