9bb3e3dd1442016618565b2ccfa5227af085e1b8369318a0dce88d5b6d713aa2 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

9bb3e3dd1442016618565b2ccfa5227af085e1b8369318a0dce88d5b6d713aa2
Size

11KB
MD5

c0be2d1eeff56294b0aded7081870b65
SHA1

a722cfbdc78f40eb4755c6f806e124f4cd91bf68
SHA256

9bb3e3dd1442016618565b2ccfa5227af085e1b8369318a0dce88d5b6d713aa2
SHA512

cffc4e0f2076bf9ce48a3e87be16e7caac9a7cda11e02e5b7f8de49a2c8fb86443dd79e871b8b08387d657b072b589e999816d6749602fb638df8c9112a6c9c7
SSDEEP

192:B05ZuvqIAbTrrWij211+20GaH0Bz2KWtu:Bo8qxnruy20BH0F2KW

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
9bb3e3dd1442016618565b2ccfa5227af085e1b8369318a0dce88d5b6d713aa2

Files

9bb3e3dd1442016618565b2ccfa5227af085e1b8369318a0dce88d5b6d713aa2
.exe windows x86

6e60320ebd7f00c7ed72f809a8a498b0

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comdlg32

GetOpenFileNameA

crtdll

_fmode_dll
_fpreset
_iob
__GetMainArgs
_setmode
atexit
free
malloc
signal
_cexit
sprintf
vsprintf
_environ_dll
_fileno

gdi32

GetStockObject

kernel32

FormatMessageA
GetCommandLineA
CloseHandle
GetFileSize
GetLastError
GetModuleHandleA
GetStartupInfoA
CreateFileA
ReadFile
SetFilePointer
SetUnhandledExceptionFilter
WriteFile
CreateThread
DeleteFileA
ExitProcess

user32

DialogBoxParamA
EnableWindow
EndDialog
GetDlgItem
GetSystemMetrics
GetWindowRect
GetWindowTextA
IsDlgButtonChecked
MessageBoxA
PostMessageA
SetFocus
SetWindowPos
SetWindowTextA
SystemParametersInfoA

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 1024B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: - Virtual size: 1KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ