bbb7229a2ad58f16aa0ad5c26b228b443bb901263c0cd270129a679b4e449a92N | Triage

Sharing

Copy URL Twitter E-mail

General

Target

bbb7229a2ad58f16aa0ad5c26b228b443bb901263c0cd270129a679b4e449a92N
Size

164KB
MD5

0254b393d434a860d925c0f0bea6a880
SHA1

d422f31a9d075a00ee1e13ec3584ae80696a5902
SHA256

bbb7229a2ad58f16aa0ad5c26b228b443bb901263c0cd270129a679b4e449a92
SHA512

36bc60e7ad896011c785e4ac6813c6976c10be5089d75ac34fce51d76ccc6b0c73e005a8c8a11dde7026dd670bdf4279c787ed85903d152b4d254ac11c48cbb9
SSDEEP

3072:EECUS/D4HMNFkvxPe9S6P5xmqUENVEDqEl70Eq6Grs6rnpkqys/8Jtq2wQ4+4j9e:E5UTM8vgSzqtMNl0JzTnpeI8T9yRluSe

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bbb7229a2ad58f16aa0ad5c26b228b443bb901263c0cd270129a679b4e449a92N

Files

bbb7229a2ad58f16aa0ad5c26b228b443bb901263c0cd270129a679b4e449a92N
.exe windows:4 windows x86 arch:x86

31992bdb3fbf219263ae7b0b04358a31

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCPInfoExW
EnterCriticalSection
GetSystemInfo
GetModuleHandleA
LeaveCriticalSection
LocalAlloc
LCMapStringW
SetStdHandle
LCMapStringA
GetLastError
EnumResourceTypesA
DeleteCriticalSection
GetLogicalDriveStringsW
LocalFree
InitializeCriticalSection
GetProcAddress
LoadLibraryA
GetStringTypeA

ole32

OleSave
CoCreateInstance
CoTaskMemAlloc
CoTaskMemFree
StringFromGUID2
CoTaskMemRealloc

newdev

UpdateDriverForPlugAndPlayDevicesW

gdi32

GetTextMetricsA
SelectObject
GetDeviceCaps
DeleteObject
GetTextExtentPointA
CreateFontIndirectA

Sections

.text
Size: 96KB - Virtual size: 96KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.tls
Size: 1024B - Virtual size: 1020B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 64KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 96KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ