bac4784b4d537e4610f3f9afe6e31ea3 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

bac4784b4d537e4610f3f9afe6e31ea3
Size

15KB
MD5

bac4784b4d537e4610f3f9afe6e31ea3
SHA1

d506dedadf091b28e0f65a37303e0cd1df444f71
SHA256

2d6ff20be69e3662984b38414ea0843b0784d89a0d2195c4b096dcc081622906
SHA512

9f09ad25cccf92071582932be6a46ca65e0eb216f007c3cb7a6c10e27ae621d53941f28b06057a9182532916775691f85e1f77d781e40204b577ef5f625fe39a
SSDEEP

384:7Bsp55d15gBHIQzs06KE/bTLPF43OgxJg:Gp55d0RIQzN6KE/8Hg

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bac4784b4d537e4610f3f9afe6e31ea3

Files

bac4784b4d537e4610f3f9afe6e31ea3
.exe windows:1 windows x86 arch:x86

adad19961b9311e16dc710907e287dd4

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

DeviceIoControl
EnumSystemLocalesA
FatalExit
Sleep
SleepEx
CreateJobObjectA
CreateWaitableTimerA

msvcrt

getwchar
fmod
atan2
fscanf
isgraph
isupper
fsetpos

Sections

.text
Size: 5KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 6KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE