bb28b6ddd070f94283051a8d3f87c6c9f77dd8305358d237d531d99ee621ef2f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

bb28b6ddd070f94283051a8d3f87c6c9f77dd8305358d237d531d99ee621ef2f
Size

89KB
MD5

0014f9883e982a9f634c06b5ee240fab
SHA1

4a7be0ecc973ef2af62c2d31b829e961525e4b13
SHA256

bb28b6ddd070f94283051a8d3f87c6c9f77dd8305358d237d531d99ee621ef2f
SHA512

bd808e97194e10673060481828356721ff71430e1959e7e1400b8d590025b4c575779b01413b845dea7f0899695a81e9730879d8b856822769caa15ca1c25620
SSDEEP

1536:Dum4+il171+3b/XOe96gnM1WqjxkGwQUxJSPjVu8ikKnk8uSAIEjD5T:t4tozX596Q+WKk6UxcjkiK/6D5T

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bb28b6ddd070f94283051a8d3f87c6c9f77dd8305358d237d531d99ee621ef2f

Files

bb28b6ddd070f94283051a8d3f87c6c9f77dd8305358d237d531d99ee621ef2f
.exe windows:5 windows x86 arch:x86

22953c0222c374b5c6b3341a48df763b

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

D:\PMS\pms4\Project(20130920)\GolfProject\bin\GolfProject.pdb

Imports

kernel32

LoadLibraryA
GetProcAddress
VirtualAlloc
VirtualFree

user32

LoadCursorW

advapi32

RegQueryValueExW

shell32

ShellExecuteW

ws2_32

WSAStartup

iphlpapi

GetAdaptersInfo

Sections

.text
Size: 72KB - Virtual size: 200KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 512B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE