bc37629b0ded47c6ed08ce05e6d77078 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

bc37629b0ded47c6ed08ce05e6d77078
Size

99KB
MD5

bc37629b0ded47c6ed08ce05e6d77078
SHA1

b84388baafec51c6c665a91fa860e663e2f33800
SHA256

db5b5bc3e27025d74e675803efbf6a09c525287fec5b94b3a76cd3ebe1fb4fdb
SHA512

1a9649422a2012d03e1b12ccdab4019ab840d4793764679e8821661d3e82273e93719625f970a012c46df3877588147bf75a6509e2db8b8771904b7ea4d6b0e9
SSDEEP

3072:WkGxeY3qhIn5b1hwxOVuRq3BLdlEfxMj7NDR7cDQ8tZm:+eY6an1MxO8MBhlEGj7NDRADQ+Zm

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bc37629b0ded47c6ed08ce05e6d77078

Files

bc37629b0ded47c6ed08ce05e6d77078
.exe windows:4 windows x86 arch:x86

aa99f79b149625c667fff1a6f3d7d3d5

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCommandLineA
lstrcatA
lstrcpynA
LCMapStringW
GetStringTypeA
GetModuleFileNameA
MultiByteToWideChar
lstrcpynW
GetStringTypeW
CreateFileA
GetStartupInfoA
GetFileType
SetHandleCount
GetCPInfo
GetCurrentProcess
WriteFile
GetACP
GetVersion
lstrcpyA
TerminateProcess
LCMapStringA
GetStdHandle

user32

DialogBoxParamW
EndDialog
CopyRect
GetMenu
IsMenu
GetWindowTextLengthA
GetWindowTextA
DrawTextA
GetDlgItem
LoadCursorA
CloseWindow
IsWindow
CopyIcon
CopyImage
LoadMenuA
DrawIconEx
DrawTextW
GetDC
CreateIcon
DrawIcon
GetFocus
DialogBoxParamA

comctl32

CreateToolbarEx
ImageList_Add
ImageList_Copy
ImageList_GetIcon
ImageList_Draw
DrawStatusText
ImageList_GetIconSize
ImageList_EndDrag
ImageList_DrawEx
MenuHelp
ImageList_Create
ImageList_AddIcon

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 94KB - Virtual size: 16.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ