bd4c0287db604f158a59f6896190a06f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

bd4c0287db604f158a59f6896190a06f
Size

243KB
MD5

bd4c0287db604f158a59f6896190a06f
SHA1

5b8bed36cb68db87ebb5448d77c36a625e771e63
SHA256

52774967591a894d1e25edac4e3a8795e4aed909030ceab7c558a43785e6f038
SHA512

4568918914abec69054ac5ead6cf367169aefd69312887debf020e47813647f655f46ae66a8791e99c6886725a671a3f8393ad632d9229b9aa0a35466e474c1c
SSDEEP

6144:B52W1eR3nL4I+EW+O93ld7Ph+JkNX6dXv88y/3Y3Hg:F1g7iE0ld7pRsZd

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bd4c0287db604f158a59f6896190a06f

Files

bd4c0287db604f158a59f6896190a06f
.exe windows:4 windows x86 arch:x86

216bc0f9335386474124f107e0337320

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetVersion
FileTimeToLocalFileTime
GetFileAttributesW
GetConsoleDisplayMode
GetFileTime
HeapFree
HeapAlloc
GetProcessHeap
RtlUnwind
HeapValidate
IsBadReadPtr
RaiseException
ExitProcess
VirtualProtect
VirtualAlloc
GetSystemInfo
VirtualQuery
SetUnhandledExceptionFilter
QueryPerformanceCounter
GetSystemTimeAsFileTime

oleaut32

DispInvoke
CreateErrorInfo
OleSavePictureFile
SafeArrayAllocDescriptorEx
GetErrorInfo
SetErrorInfo
GetActiveObject
VariantInit
SysFreeString

wininet

InternetCloseHandle
InternetOpenUrlW
InternetOpenW
InternetReadFile

Sections

.text
Size: 170KB - Virtual size: 182KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 1012B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 70KB - Virtual size: 70KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE