bc012aeb0611c16f81bca871c9500017430db83f67149c93967ead9aa960a162 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

bc012aeb0611c16f81bca871c9500017430db83f67149c93967ead9aa960a162
Size

3.2MB
MD5

edc7fc67d298bb89cd2c23b4a206ea6e
SHA1

739307101856eff270bd799ec385cb8e10eaed58
SHA256

bc012aeb0611c16f81bca871c9500017430db83f67149c93967ead9aa960a162
SHA512

f8a09c1943c9dd0f94feb5b738c8fbeae1e06453762f71d79db5bc88753d43c33fef01cc8af11488b829906f7d59e67e141b4f426daa9257a84970fb23a8e4cd
SSDEEP

49152:D7ls32ZolHrKDzVHBv2E/rmZ6X1jDViQOmnUfUqWdgsDBI9raMLbqWF:Ns32ZolHuDjrJ1lLLUfU13ixaMHL

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bc012aeb0611c16f81bca871c9500017430db83f67149c93967ead9aa960a162

Files

bc012aeb0611c16f81bca871c9500017430db83f67149c93967ead9aa960a162
.dll windows:5 windows x86 arch:x86

b680bc0043242ee6be4a0f3088163214

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

advapi32

CreateProcessAsUserW

kernel32

GetModuleHandleA
AreFileApisANSI
SetPriorityClass
GetModuleHandleW
OutputDebugStringA
GetStringTypeA

gdi32

SetDCPenColor

user32

SetForegroundWindow
SetCaretBlinkTime

oleaut32

GetRecordInfoFromGuids

mprapi

MprConfigInterfaceCreate

Exports

Exports

AwcdthodsHlu

Sections

.text
Size: 2.8MB - Virtual size: 2.8MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.crt
Size: 4KB - Virtual size: 273B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_MEM_READ

.data
Size: 292KB - Virtual size: 292KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 108KB - Virtual size: 107KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ