28bac93eea8e0206cb391a2f0444dcd0_console[.]exe

General

Target

28bac93eea8e0206cb391a2f0444dcd0_console.exe
Size

369KB
MD5

28bac93eea8e0206cb391a2f0444dcd0
SHA1

25140c0094e8e1e6a4b62c941c7f5ce9910e05b0
SHA256

211ae34ea766cf1274c672e01a00d4a6d04361086df466ff2677d88083ec217b
SHA512

1812d1d702821098bc73fede81d74d0880cb4d303a6c2f4a2fcdf2b823cb99d8d43db764507cb663a568ace71d337b67066b2e7e370f7ff46977f2977e32f11a
SSDEEP

6144:laZQag5k+f3rBt+2OBSJI/JX1y8bFZQwddL9FDiwfwdiMa1wvr5EhrCx:l5ag5k+fL7mSJEJFyxwddLnDc

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
28bac93eea8e0206cb391a2f0444dcd0_console.exe

Files

28bac93eea8e0206cb391a2f0444dcd0_console.exe
.exe windows:4 windows x86

11767213535b92ddcb83de88255f52a5

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleFileNameA
RtlUnwind
ExitProcess
TerminateProcess
GetCurrentProcess
GetLastError
FindFirstFileA
FindNextFileA
FindClose
FileTimeToSystemTime
FileTimeToLocalFileTime
GetLocalTime
GetCommandLineA
GetVersion
CloseHandle
WriteFile
ReadFile
SetFilePointer
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
CreateFileA
HeapFree
HeapAlloc
SetUnhandledExceptionFilter
GetProcAddress
GetModuleHandleA
HeapReAlloc
HeapSize
GetTimeZoneInformation
UnhandledExceptionFilter
RaiseException
FreeEnvironmentStringsA
MultiByteToWideChar
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
WideCharToMultiByte
GetCPInfo
GetACP
GetOEMCP
HeapDestroy
HeapCreate
VirtualFree
FlushFileBuffers
SetStdHandle
SetEndOfFile
VirtualAlloc
IsBadReadPtr
IsBadWritePtr
IsBadCodePtr
GetStringTypeA
GetStringTypeW
LoadLibraryA
LCMapStringA
LCMapStringW
CompareStringA
CompareStringW
SetEnvironmentVariableA
CreateDirectoryA
GetFileAttributesA

Sections

.text
Size: 290KB - Virtual size: 289KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 28KB - Virtual size: 33KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.drdata
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

11767213535b92ddcb83de88255f52a5

Headers

File Characteristics

Imports

kernel32

Sections

.text Size: 290KB - Virtual size: 289KB

.rdata Size: 28KB - Virtual size: 27KB

.data Size: 28KB - Virtual size: 33KB

.idata Size: 2KB - Virtual size: 1KB

.drdata Size: 20KB - Virtual size: 20KB

.text
Size: 290KB - Virtual size: 289KB

.rdata
Size: 28KB - Virtual size: 27KB

.data
Size: 28KB - Virtual size: 33KB

.idata
Size: 2KB - Virtual size: 1KB

.drdata
Size: 20KB - Virtual size: 20KB