bb1b7ff02b35d998e948de182d4c1cd6 | Triage

Sharing

General

Target

bb1b7ff02b35d998e948de182d4c1cd6
Size

26KB
MD5

bb1b7ff02b35d998e948de182d4c1cd6
SHA1

ccf91486a47b42aa230a1e419af3637bc33f301d
SHA256

bc0e08834144124120caedab917d931644efbc17398f50d51e2ba542837414cb
SHA512

73d1fe0be9b5662df939cab16e488b9cded37ab012e8a35c82f8ee73a659fd32d01b5fd0bd85ee7b11ae98132057c4ef41b167a00307b7b8ce8558a0f4d7d471
SSDEEP

384:rcccccccccccccccccccccccccccccccccccccccccccccccccccccccccccccc:yypr7UTyiWyJZloK

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bb1b7ff02b35d998e948de182d4c1cd6

Files

bb1b7ff02b35d998e948de182d4c1cd6
.exe windows:4 windows x86 arch:x86

9bc523fcf1603746ff0163b3c2db7970

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
LoadLibraryA
CloseHandle
GetModuleHandleA
lstrcpyA
GetStartupInfoA
GetLastError
LocalAlloc
Sleep
LocalFree
GetTickCount
GetStdHandle
lstrcatA
GlobalAlloc
CreateEventA
GetCommandLineA
lstrlenA
GetVersionExA
GetFileSize
GlobalFree
FreeLibrary

user32

DispatchMessageA
ScreenToClient
TranslateMessage
CreateWindowExA
GetClientRect
ShowWindow
GetMessageA
DialogBoxParamA
DefWindowProcA
SetWindowTextA
DestroyWindow
PostQuitMessage
BeginPaint
EndDialog
LoadIconA

gdi32

GetTextExtentPoint32A
LineTo
GetTextMetricsA
CreateFontIndirectA
CreateSolidBrush

msvcrt

wcslen
exit
__p__fmode
toupper
_exit
__set_app_type
memmove
_initterm
rand

Sections

.text
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 14KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ