bc31ddbbdfd07edd9007cc7cb3337243 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

bc31ddbbdfd07edd9007cc7cb3337243
Size

140KB
MD5

bc31ddbbdfd07edd9007cc7cb3337243
SHA1

384d50d67914f9bf4d5522db3f6ff892eb479168
SHA256

e169f002cd291b068f921a398f89cd7cd2354ba33263d5fecd512eeaedc2988d
SHA512

b6d0a35d104c65b66bf18a18a5e9b5ca89e91eec4f631e68fd0503ed02c45c2117a2d05bcffe7d120391fb37f360b31c4873b88c996af3bc6753324c2a8f12da
SSDEEP

3072:Ppo5kVPswfeLtQUERzZqwZErSaoCNxnFSGMPRBixHbJ:Ppo5kVPswf0tKRNtZeLxFaRBi7

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bc31ddbbdfd07edd9007cc7cb3337243

Files

bc31ddbbdfd07edd9007cc7cb3337243
.exe windows:4 windows x86 arch:x86

43800571b796916a913784fd00e768ed

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetSystemDirectoryA
GetModuleHandleA
SetUnhandledExceptionFilter
ReleaseMutex
CreateMutexA
GetCommandLineA
lstrcatA
CreateDirectoryA
Sleep
CreateThread
GetCurrentThreadId
GetStartupInfoA
GetLastError
SetLastError
lstrcmpiA
lstrcpyA
LoadResource
SizeofResource
lstrlenA
CloseHandle
FreeResource
ExitProcess
LoadLibraryA
GetProcAddress
SetFileAttributesA

user32

DefWindowProcA
DispatchMessageA
TranslateMessage
GetMessageA
UpdateWindow
ShowWindow
CreateWindowExA
RegisterClassExA
LoadCursorA
LoadIconA
PostThreadMessageA
wsprintfA
GetInputState

advapi32

CloseServiceHandle
CreateServiceA
StartServiceA
RegCloseKey

msvcrt

_strnset
_controlfp
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
strtok
??2@YAPAXI@Z
strchr
realloc
malloc
__CxxFrameHandler
_CxxThrowException
_except_handler3
??3@YAXPAX@Z
strstr
??1type_info@@UAE@XZ
_exit
_XcptFilter
exit
_acmdln

Sections

.text
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 129KB - Virtual size: 128KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ