bdc3b452b2598c61fdab864b8b064397 | Triage

Sharing

General

Target

bdc3b452b2598c61fdab864b8b064397
Size

183KB
MD5

bdc3b452b2598c61fdab864b8b064397
SHA1

f880d6ac6af411e2a1c72a40cf672937e4456df3
SHA256

00c60615328bb935bedbd256b88e5a30384c0ba9bfc38761be587be9f5ad5cb3
SHA512

47c76d9b78ff53999d12c2d8eb1d22cdd3c58a0138e90907f7d6b091e003089aff1df51b70a2da57c4cbd346b81fae0d4b27f724f63fc447de0cddec4bd8c9cf
SSDEEP

3072:ut+7K0HgZkJZyiXU1Q2pqygZnrGiVH2/ln63w7qF0CyB30PWBkPFkgNr8T7R2aY:utAK5kKiXUMNtlMlnX7gj+0DWyr2

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bdc3b452b2598c61fdab864b8b064397

Files

bdc3b452b2598c61fdab864b8b064397
.exe windows:4 windows x86 arch:x86

c159a63c6d4b516a20b9bb9246d39728

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

ClipCursor
RedrawWindow
FindWindowA
TrackPopupMenuEx
DestroyMenu
CreatePopupMenu
GetDesktopWindow

kernel32

FlushInstructionCache
FindFirstFileA
FindResourceExA
DuplicateHandle
EnumResourceNamesW
SetEnvironmentVariableW
MapViewOfFile
UnmapViewOfFile
GetModuleFileNameW
FindClose

shell32

Shell_NotifyIconA

winmm

timeEndPeriod

rpcrt4

NdrComplexArrayFree
UuidCreate

Sections

.text
Size: 112KB - Virtual size: 111KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 768B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 68KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 260KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ