ba21aaa8bfab92de0945b3bfcbce3ed9 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ba21aaa8bfab92de0945b3bfcbce3ed9
Size

16KB
MD5

ba21aaa8bfab92de0945b3bfcbce3ed9
SHA1

e341b8b7c4ab22fd370f9bb1f5ded25af1fc5b9a
SHA256

9ef9efbd922f3b4daa3aabeb34a7c7ff770fe896fc17b6209e0f5479e9b4626b
SHA512

9670062f35452e2b2c2a30a8102f76efbbedba050d49cd9753fc610b6c54a46860adecaf54f50d90d74c93b6d82861b406a4b045019b4e78161da47d7b60ac51
SSDEEP

192:6OIzboxP/P9rxfBVUp26i5NEzZbJwi/nDsjk6Y1tuY:U0x9FfBs2D5NeCi/DOk6Y1tuY

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ba21aaa8bfab92de0945b3bfcbce3ed9

Files

ba21aaa8bfab92de0945b3bfcbce3ed9
.exe windows:4 windows x86 arch:x86

c246412106f3780f05e5ad3e3cca41e8

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CompareFileTime
GetVersion
GetUserDefaultLangID
GlobalUnlock
InterlockedExchange
GetCommandLineA
GetConsoleCP
GetConsoleDisplayMode
VirtualProtect
HeapReAlloc
GlobalSize
GetAtomNameA
WaitForSingleObject
ResumeThread
HeapCreate
lstrlenA
GetTickCount
SetLastError
GetModuleHandleA
WaitForMultipleObjects
LoadLibraryExA

user32

AnyPopup
CreateIcon
GetFocus
ReleaseDC
DrawTextA
DragDetect
GetTitleBarInfo
GetDC
wsprintfA
GetWindow
FillRect
SetForegroundWindow
EndPaint
FrameRect
GetCursorPos
GetParent
GetClassNameA
ShowWindow
BeginPaint

rastapi

DeviceListen
DeviceConnect
DeviceDone
AddPorts
PortClose

quartz

DllGetClassObject

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 522B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ