bc0d2c6fc5288e93d6cd2e9eda34cb3b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

bc0d2c6fc5288e93d6cd2e9eda34cb3b
Size

51KB
MD5

bc0d2c6fc5288e93d6cd2e9eda34cb3b
SHA1

53b91f558456a66960c5c88641b1eb9759be4e32
SHA256

4328eeed7f3515722af0d8f4d088890d7f9fafd61ccdd12d02950dc12ba452b5
SHA512

33aa6a70f8c6f35369b07e272156f4ed4ffab21fcd1b771e97f1e1b290d30be8dc74ce793ab32bcec2b486d47eabad6f711eb4089aa7e7134bbe6d9cfe4091ed
SSDEEP

768:VV1R3TCBP8DLaAKthBZgfKSXaxsUiXCpT8bGOIbwTNQzC2VwEZg5TVWL:rP3WMLqt9FSXsqXCt8hcX+SW5m

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bc0d2c6fc5288e93d6cd2e9eda34cb3b

Files

bc0d2c6fc5288e93d6cd2e9eda34cb3b
.dll windows:5 windows x86 arch:x86

499d7a5523eedc30dcda6e478b670c14

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetProcAddress
ReadConsoleA
SetConsoleCP
ExitProcess
GetConsoleMode
Module32First

user32

GetMessageW

shell32

SHGetFolderPathA
SHGetNewLinkInfoA

Exports

Exports

OpenMbdhhfay
EndSgxcccle

Sections

.icode
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

j4eajlsz
Size: - Virtual size: 108KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 43KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

idata
Size: - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.import
Size: 2KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ