12802628ecf7cba750cdf12bae2882bc | Triage

Sharing

Copy URL Twitter E-mail

General

Target

12802628ecf7cba750cdf12bae2882bc
Size

132KB
MD5

12802628ecf7cba750cdf12bae2882bc
SHA1

499d4c6bfe3a3468ec2e848a7213ffbfe42a421d
SHA256

f01d4ec252818973912fc9752b169de11093cdd5bc23fa7f564b4ab82c0a5f84
SHA512

2e7aa1c169a571175c5da84093db410c003217efa26b364ac3237d0c774a9d711794b99f41f9518699e0623d7e104e400ac90a72b0e211f88fe0693782336a5d
SSDEEP

3072:iMbFilx8zcm6ZWvg+BLAKyQO0KA3DJqyif9M:9sn8WZWvg0LAK80KA3DJqyT

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
12802628ecf7cba750cdf12bae2882bc

Files

12802628ecf7cba750cdf12bae2882bc
.exe windows:4 windows x86 arch:x86

b11eb5707d7109e22c62c437df1249ba

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetConsoleInputExeNameA
MoveFileExA
GetCompressedFileSizeA
IsValidLocale
ConsoleMenuControl
GetLongPathNameA
GetCommandLineA
ExitProcess
GetStartupInfoA

Sections

rc60
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

rc61
Size: - Virtual size: 112KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

rc62
Size: 116KB - Virtual size: 116KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

idata
Size: 4KB - Virtual size: 404B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

rc63
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ