12fb9f06407da6abdd89596afcc4be1a | Triage

Sharing

Copy URL Twitter E-mail

General

Target

12fb9f06407da6abdd89596afcc4be1a
Size

132KB
MD5

12fb9f06407da6abdd89596afcc4be1a
SHA1

bef4504d97dd9ef13d5e399ae93cfe741d432617
SHA256

aced16d514e2bcf7a21550258b365983e8d7f00f69a5439867c9805faab017ef
SHA512

efd6fc92aea537178f115138f30688a5229edff3cedf0a287d801b5416ea8bfe16f19580a646aebed2793bd141343c843e90adced86c2b56872b965209f1cc8e
SSDEEP

1536:rTb1/mzAz2YfQyEi4gYgt7vdf89uIpO1Iuh6dyIfxcWcZtaZ+cNTtDelMH+eSxZ0:VObyZE9uIo9YyIxXMiZH9SPpwhyHcj9

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
12fb9f06407da6abdd89596afcc4be1a

Files

12fb9f06407da6abdd89596afcc4be1a
.exe windows:4 windows x86 arch:x86

60bdb52e6fd6a4337cfea40698fc6b29

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetNumberOfConsoleFonts
GetProcessAffinityMask
HeapReAlloc
lstrcmpi
SetTermsrvAppInstallMode
FindAtomA
CreateDirectoryA
GetConsoleScreenBufferInfo
GetLocalTime
SetFileTime
GetCommandLineA
ExitProcess
GetStartupInfoA
FindNextFileA
DuplicateHandle
SetConsoleCursor
LoadLibraryA
SetFilePointerEx
_lclose
SetLocaleInfoA
ReleaseMutex
SetHandleCount
CancelWaitableTimer
QueryPerformanceFrequency

Sections

ATSEC0
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

ATSEC1
Size: - Virtual size: 108KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

ATSEC2
Size: 112KB - Virtual size: 112KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

idata
Size: 4KB - Virtual size: 144B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ