b9c299f7487924d8912deba757fa0bb9 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b9c299f7487924d8912deba757fa0bb9
Size

120KB
MD5

b9c299f7487924d8912deba757fa0bb9
SHA1

b824b954d12852c077a26edc8138a33c94b8cc94
SHA256

7152d0bf6900e6d64b5043afb45b9bc396b5dba62b200b447914cb52251ff8fe
SHA512

2c37c7cf15a08da2d930af25b5988f82a20e9dd454d8b2c9950f0266ede8fc0a90a0246c5e2a270d537ef727ddac7b97da3c06bf78b41bc5db2b698f16f5bdb3
SSDEEP

3072:gTnyCX6rrRJ6jANQL3Fm3gWSHCv1Nd5+R/Q/XLfywG11:sn5em3FYgAdN2R/Q/XLGr

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b9c299f7487924d8912deba757fa0bb9

Files

b9c299f7487924d8912deba757fa0bb9
.exe windows:4 windows x86 arch:x86

a01bdc7b7d25d55e586094a20414867c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FindFirstFileW
SuspendThread
SetFilePointer
CreateThread
FreeEnvironmentStringsA
EnterCriticalSection
GetLocalTime
FindClose
LeaveCriticalSection
Sleep
EnumResourceNamesA
GetLastError
InitializeCriticalSection
GetSystemTimeAsFileTime
ExitProcess
ReadFile
GetStartupInfoA
SetEndOfFile
CloseHandle
WriteFile
DeleteCriticalSection
LoadLibraryA

oleacc

LresultFromObject
CreateStdAccessibleObject

Sections

.text
Size: 96KB - Virtual size: 96KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 740B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 21KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ