0ba1d44ecfee420c7c1ccd49b717364a2a8cc476453b046749410c4351e7431c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0ba1d44ecfee420c7c1ccd49b717364a2a8cc476453b046749410c4351e7431c
Size

95KB
MD5

c5561975cd075984840321897a04bc8f
SHA1

16284c0dcdae4c1fa8dfabf6adb94ef6b5052338
SHA256

0ba1d44ecfee420c7c1ccd49b717364a2a8cc476453b046749410c4351e7431c
SHA512

bd60bb81b0762713ce20b36a916178aa0ce5ede4c34d0f5744f3bd78e8f571025ae566738a11eae78f9c24a16451d36c404a7fd384ad2d794753fde65a240df9
SSDEEP

1536:gjL0iNDTyZ42Qp3NPkViwXFn5wXGL0iNDTyZ42Qp3NPkViwXFn5wXn:gjLZTyZr+ICGLZTyZr+ICn

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0ba1d44ecfee420c7c1ccd49b717364a2a8cc476453b046749410c4351e7431c

Files

0ba1d44ecfee420c7c1ccd49b717364a2a8cc476453b046749410c4351e7431c
.exe windows:5 windows x86 arch:x86

c167aa86c88c2d0427cc2d39ae3d097e

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ConvertDefaultLocale
SetCriticalSectionSpinCount
GetLastError
MultiByteToWideChar

user32

IsDialogMessageW
IsWindowVisible
GetWindowLongW
GetWindowContextHelpId
MessageBoxA

Sections

.text
Size: 512B - Virtual size: 204B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 362B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 56B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rsrc
Size: 92KB - Virtual size: 96KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ