ba40cbaa1308d5a77a8ef72f4ef83386 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ba40cbaa1308d5a77a8ef72f4ef83386
Size

132KB
MD5

ba40cbaa1308d5a77a8ef72f4ef83386
SHA1

2f0836aa30d04b64aa9b1532a7a309ef08373907
SHA256

a7dfe53122f221a6f29bf8dc87a9979da87ac03edfbf65d8931350afd3c2e6f8
SHA512

a6f312b0fe6ace3b4f41012ebe188a47b6ec0b3662a6d9c66e789cc05d3640aa46dcb0d467b41ee84b44d5c42a284ad467bb13764605fdf9191587f20bd161ca
SSDEEP

3072:y0tAWwLTNVQqhQ3cY6tCG+Gpglb9yLR0X+vIm8Br:yUALLZy6tCG+GbR0XPH

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ba40cbaa1308d5a77a8ef72f4ef83386

Files

ba40cbaa1308d5a77a8ef72f4ef83386
.exe windows:4 windows x86 arch:x86

0295e2959b18f4e4fa6ffc336e43ed4a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCommandLineA
ExitProcess
GetStartupInfoA
SetConsolePalette
SizeofResource
SetConsoleNumberOfCommandsA
IsBadHugeWritePtr
SetCommBreak
GetPrivateProfileIntA
Heap32First
CreateSemaphoreA
CommConfigDialogW
ReadConsoleA
EnumDateFormatsExA
PulseEvent
FindVolumeMountPointClose
GetStdHandle
GetConsoleHardwareState
ReplaceFileA
SetConsoleCursorInfo
SetSystemTime
CreateFileA
SetCriticalSectionSpinCount
CreateJobObjectA
lstrcpynA
TlsSetValue
LockFileEx
IsValidLocale
GetPrivateProfileStringW
FindNextFileW
CreateWaitableTimerA
GetConsoleInputExeNameW

Sections

code
Size: 8KB - Virtual size: 116KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

data
Size: 112KB - Virtual size: 112KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

idata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ