bd8c4f03932fa0171cf1fbd040d50269c1e3b7c7d84b04975753b3247e4652dbN[.]exe | Triage

Sharing

General

Target

bd8c4f03932fa0171cf1fbd040d50269c1e3b7c7d84b04975753b3247e4652dbN.exe
Size

187KB
MD5

f038c8abcb879e38bf27acb8db28e2a0
SHA1

1c1fc5e80fd8b284607cfbaf9b8bf9b0cc58cdb4
SHA256

bd8c4f03932fa0171cf1fbd040d50269c1e3b7c7d84b04975753b3247e4652db
SHA512

637d73485aed793f9bada597a58593d8f5a0a9fbae862e7dea46fc6864c933bd5f84babcc1355d7418c5d147bc10732bb1e6408ad2792ed744011a8775d60f8d
SSDEEP

3072:fb9fR6vPhkm9gDdMM9T4wYkgVGIeuK9RWZBmVPKCuoyH:fb9J6BkDdMMCwYkgwbu2VVPnuoU

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bd8c4f03932fa0171cf1fbd040d50269c1e3b7c7d84b04975753b3247e4652dbN.exe

Files

bd8c4f03932fa0171cf1fbd040d50269c1e3b7c7d84b04975753b3247e4652dbN.exe
.exe windows:4 windows x86 arch:x86

288b1b3e94b32e63e7622866cb9f03a1

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetWindowRect
UnregisterClassA
MoveWindow
CharNextA
GetActiveWindow
EndPaint
EqualRect
LoadAcceleratorsA
BeginPaint
OffsetRect
SetDlgItemTextA
DestroyWindow
PtInRect
IntersectRect
GetDlgItem
SetWindowLongA
SetWindowRgn
GetDC
DefWindowProcA
ReleaseDC
GetKeyState
SetFocus
SetParent

clusapi

CloseCluster

kernel32

GetLongPathNameW
InterlockedIncrement
GetProcAddress
LoadLibraryA
InitializeCriticalSection
GetFileAttributesA
SetThreadContext
lstrcpynA
EnumResourceNamesA
DeleteCriticalSection
DisableThreadLibraryCalls
GetModuleFileNameA
ExitProcess
InterlockedDecrement
MultiByteToWideChar
GetWindowsDirectoryA
GetVersion
GetLocaleInfoA

Sections

.text
Size: 106KB - Virtual size: 106KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: 77KB - Virtual size: 76KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 1024B - Virtual size: 116KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ