e2458363b08a92790b60e377548744390f48b3cc8b8f782187a3c7a831af207a[.]bin[.]sample

Resubmissions

17-07-2023 16:41

230717-t7cw8aec3x 7

13-07-2023 10:00

230713-l1nq5shb4s 7

12-07-2023 15:27

230712-svrzyaeg9s 7

Sharing

Copy URL

Twitter E-mail

General

Target

e2458363b08a92790b60e377548744390f48b3cc8b8f782187a3c7a831af207a.bin.sample
Size

22KB
MD5

d31a84e598ec295a556dcfc5d5275816
SHA1

0c8b18547df5dea26284621c332c1a6c79a7fa5d
SHA256

e2458363b08a92790b60e377548744390f48b3cc8b8f782187a3c7a831af207a
SHA512

4b782f6d5a15f5bc2e0445009778317352d0c1df1c90fa243b580559d4ad1330c0baf5c4ec51d63b22af2fe59c5b1136293d8f6bdebdd67830f8a0f10a76d0b0
SSDEEP

384:3pDiz0KwG26bMJhCFP/jYjaWU4MakAUHJTKGOo2x+PgwgB0VDGXnxPveC5jx2qZ2:3Jv2lY+WyDAUHFyjxOglQcxP842r

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
e2458363b08a92790b60e377548744390f48b3cc8b8f782187a3c7a831af207a.bin.sample

Files

e2458363b08a92790b60e377548744390f48b3cc8b8f782187a3c7a831af207a.bin.sample
.exe windows x86

ae56abc45ab316c7ea90e32f2a5e442b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

shell32

SHGetFolderPathA

ole32

CoCreateInstance
CoSetProxyBlanket
CoInitialize

oleaut32

VariantClear
SysAllocString
SysFreeString

kernel32

DeleteFileA
EnterCriticalSection
ExitProcess
GetCommandLineA
GetComputerNameA
GetLocaleInfoA
GetModuleHandleA
GetProcAddress
GetTickCount
GetVersionExA
GetVolumeInformationA
InitializeCriticalSection
IsBadStringPtrW
LeaveCriticalSection
RtlUnwind
WideCharToMultiByte
lstrlenW

user32

LoadCursorA
LoadIconA
GetMessageA
TranslateMessage
DispatchMessageA
RegisterClassA
PostQuitMessage
CreateWindowExA
DestroyWindow
DefWindowProcA

gdi32

GetStockObject

advapi32

RegOpenKeyExA
RegQueryValueExA

crtdll

__GetMainArgs
exit
raise
signal

Sections

.text
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 1KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 924B - Virtual size: 924B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Resubmissions

Sharing

General

Malware Config

Signatures

Files

ae56abc45ab316c7ea90e32f2a5e442b

Headers

File Characteristics

Imports

shell32

ole32

oleaut32

kernel32

user32

gdi32

advapi32

crtdll

Sections

.text Size: 14KB - Virtual size: 14KB

.bss Size: - Virtual size: 1KB

.data Size: 3KB - Virtual size: 3KB

.idata Size: 1KB - Virtual size: 1KB

.rsrc Size: 924B - Virtual size: 924B

.text
Size: 14KB - Virtual size: 14KB

.bss
Size: - Virtual size: 1KB

.data
Size: 3KB - Virtual size: 3KB

.idata
Size: 1KB - Virtual size: 1KB

.rsrc
Size: 924B - Virtual size: 924B