0bcc3b9eafa5abd3e51f9e4e831b26f3 | Triage

Sharing

General

Target

0bcc3b9eafa5abd3e51f9e4e831b26f3
Size

28.3MB
MD5

0bcc3b9eafa5abd3e51f9e4e831b26f3
SHA1

7e1cef3fdcf0fa7dc3be06bbb36ec3ee2370e2b2
SHA256

82c4f64629423733f7c6229c50cbf2e468445bbefd6defa9aaaee4d4b40aea37
SHA512

375a7d23d9d0de3c52259873599321ba27df007a385dc8213e1a6de9692f559a305bce2b8279503b3b5e2ab4c5b0b5f94b7b502e051d7eab3c76b9ca87797d47
SSDEEP

786432:u3DQ6y+Xewrc2nqsshuQaku6JpHitaC8nQ+bQvZN6j6L:uTQ6W2nqdaT6XHqjqj8Z4

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0bcc3b9eafa5abd3e51f9e4e831b26f3

Files

0bcc3b9eafa5abd3e51f9e4e831b26f3
.exe .pdf .ps1 windows:4 windows x86 arch:x86 polyglot

65b6862e9898b195f4ef7a1685fd82dd

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetModuleHandleA
GetProcAddress

msvcrt

memset

comctl32

InitCommonControls

user32

MessageBoxA

shell32

ShellExecuteExA

ole32

CoInitialize

Sections

.
Size: 7KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.
Size: 1024B - Virtual size: 700B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE