bd9673f6c2c24140bca92963218c9970 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

bd9673f6c2c24140bca92963218c9970
Size

28KB
MD5

bd9673f6c2c24140bca92963218c9970
SHA1

b16e4f259f0e858806546143dc50db95648654ce
SHA256

774d1e02fa1aae0fae8958d5fdba9e72d8c570bb0d58a7177f67746c7bf4d30e
SHA512

ecda144c59d9a65718b4c7ff6357b86f2ebd6ac23c453cedf08d958a6e3be7404400e3378e4bdfd855f106256638f72b88b9c98166ff6e297c9441a797785594
SSDEEP

384:vhAhvTmi5Ksl9a0NvgnXh+JsVbUA4KPke5xM517Dmne0cdRWpQ6uwHPFnFN4e582:v6cAZl9amkzoKl5oDrnWV9HdnFCei

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bd9673f6c2c24140bca92963218c9970

Files

bd9673f6c2c24140bca92963218c9970
.exe windows:4 windows x86 arch:x86

157b6b6b2d3b833400a9d1a156399a84

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

CopyImage
ChangeMenuW
CallMsgFilterW
CreateMenu

shell32

Control_RunDLLW
StrRStrA
SHFileOperation
SHEmptyRecycleBinA
SHFileOperation
SHGetDesktopFolder
RealShellExecuteExW

gdi32

GetDeviceCaps
FloodFill
PathToRegion
PtInRegion
GdiStartDocEMF
RectInRegion
PolyPatBlt
GetTextColor
GetPixelFormat

Sections

.text
Size: 6KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE