bc1c9849df71615cc58527a606a40d0a | Triage

Sharing

General

Target

bc1c9849df71615cc58527a606a40d0a
Size

384KB
MD5

bc1c9849df71615cc58527a606a40d0a
SHA1

0670dc99ee2735d52228743bcfbdde24eb2a503d
SHA256

22a91cd87284c6c18b88d1d982dd7db966d0bd6be2f7a6dfb91c49214ea4d144
SHA512

dba5b1eeb14143acee09dfe24435f0a973640cb61cdc49e7f97f8780b634de26088735b089c1f0fee5b76ffd6499fd591100830860c57a4c0c9dcebd1ae1de22
SSDEEP

6144:z2t62Rv55G5ke9MRs0On1SIFs7Bqwtj9kJ8c0IITjZ0N7/cYL9duz4hwOUu808Oy:uR5GdCs0O1BkBqwtjFc0fTjZOT59ozIM

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bc1c9849df71615cc58527a606a40d0a

Files

bc1c9849df71615cc58527a606a40d0a
.exe windows:4 windows x86 arch:x86

292cc3bc8cae49922772a55ed4e159ed

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetACP
DisconnectNamedPipe
HeapCreate
GlobalLock
GetStdHandle
CloseHandle
GetConsoleCP
IsDebuggerPresent
FreeEnvironmentStringsA
CreateFileMappingA
LoadLibraryExA
GetModuleHandleA
CreateFileA
LocalUnlock
LocalFree
IsBadReadPtr
GetFullPathNameA
FindClose
CreateEventA
GetLastError

user32

DefWindowProcA
SetFocus
IsWindow
DispatchMessageA
EndDialog
CreateDialogParamA
GetIconInfo
ScrollWindow
GetDlgItem
GetDC
PostMessageA
GetMessageA
EmptyClipboard
DrawIconEx

uxtheme

CloseThemeData
EnableTheming
DrawThemeIcon
GetThemeMetric
GetThemeColor

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 522B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ