12bbd8fc342f58b02104d3a62af5f3087d4100fb8ca5d741848f44b1b6861ac3 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

12bbd8fc342f58b02104d3a62af5f3087d4100fb8ca5d741848f44b1b6861ac3
Size

5.8MB
MD5

a20773aa1cbbce0c722553462027f4ca
SHA1

25c16c769f047ac73148516bb1d05d553d3fab89
SHA256

12bbd8fc342f58b02104d3a62af5f3087d4100fb8ca5d741848f44b1b6861ac3
SHA512

4afed1bf2f9311265f5510f0190afc99400bfdcccda7693524ac1d0972c3e37298b2826c911669cc5dad9e7a94ca2b8d4ce73629f4057a6524b9cbfd0dad6871
SSDEEP

98304:k9GI7uRgnKIrsJEIacMQEr7DU9X4HJuzWu:CB73IJ8QEXDU9H

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
12bbd8fc342f58b02104d3a62af5f3087d4100fb8ca5d741848f44b1b6861ac3

Files

12bbd8fc342f58b02104d3a62af5f3087d4100fb8ca5d741848f44b1b6861ac3
.exe windows:4 windows x86 arch:x86

baa93d47220682c04d92f7797d9224ce

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpy

comctl32

InitCommonControls

Sections

Size: 4.2MB - Virtual size: 5.8MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 44KB - Virtual size: 92KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 4KB - Virtual size: 2.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

fqbiewnt
Size: 1.5MB - Virtual size: 1.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

uhaqmooy
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE