bad90c27a6b5d458b02ed55e53f33313 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

bad90c27a6b5d458b02ed55e53f33313
Size

42KB
MD5

bad90c27a6b5d458b02ed55e53f33313
SHA1

6e0a0f58a403b3fab6f9981ddad8ea5f5acd9199
SHA256

6e557ba02e3d76023708955fa56b6af9a47f89d7f8c5e11f8d79b7e9029e9d0e
SHA512

d487d618ff920ae029baebba81b8f46afa139de8451ada9f47254148028ebb8ee8d7c06eb57e071d72edb21614c75a359a68f8b03e49867c884e728098adb586
SSDEEP

768:+WJ2/nI43UuDSSH77KvhGGf261ujWakph27ngir0rIbT5GqD44CIw0Osio:+WJ2/nIJuHH77KvhF1mWaKAl0rOT5V4B

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bad90c27a6b5d458b02ed55e53f33313

Files

bad90c27a6b5d458b02ed55e53f33313
.exe windows:5 windows x86 arch:x86

794b4123f08a70710d92953730a33f1f

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FindResourceA
GetLastError
GetProcAddress
GetVersion
LoadLibraryA
LoadResource
Sleep
VirtualAlloc
VirtualFree

Sections

.text
Size: 1024B - Virtual size: 870B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 268B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 10KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE