bda8ee24b7dd0306a756b662d7b5a02eee0738ce1b64bb57fdc82d4ef18c8ef8 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

bda8ee24b7dd0306a756b662d7b5a02eee0738ce1b64bb57fdc82d4ef18c8ef8
Size

63KB
MD5

37a6639aaff5665cf65481cc8a654c9b
SHA1

c26dcf9531eec736f13e95fcb41beda5e02f3ef5
SHA256

bda8ee24b7dd0306a756b662d7b5a02eee0738ce1b64bb57fdc82d4ef18c8ef8
SHA512

a762b2013c5ed58002a2bbca2cd71cd6873feff9fbf71660c856c211a020b36150954c36dc0c121b45d56a14d01b0e5b61bb5c759b20ad20335bfc23bf41683b
SSDEEP

1536:D1StZYO9Rj1gpl3/T5EBaRCsxG8InXRGVonJ1pDWY:D4rYtbC4RGXRGq1H

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bda8ee24b7dd0306a756b662d7b5a02eee0738ce1b64bb57fdc82d4ef18c8ef8

Files

bda8ee24b7dd0306a756b662d7b5a02eee0738ce1b64bb57fdc82d4ef18c8ef8
.exe windows:4 windows x86 arch:x86

213d57221262958d7f57517d5e104d10

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateFile2
IsValidLocaleName
GetConsoleCommandHistoryLengthW
LZClose
GetFileAttributesA
EnumDateFormatsExA
VerifyVersionInfoA
HeapCreate
WritePrivateProfileStringA
SetProtectedPolicy
GetCPInfo

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 49KB - Virtual size: 70KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE