010bfecde50332828913b448f3e443eb769f6244c9059cac8b3470eabd5cd6ebN[.]exe

General

Target

010bfecde50332828913b448f3e443eb769f6244c9059cac8b3470eabd5cd6ebN.exe
Size

158KB
MD5

a0c115ff36388864e8acae7447dce340
SHA1

3da62783c46cb79f7e3867b068a092bf1543cf1f
SHA256

010bfecde50332828913b448f3e443eb769f6244c9059cac8b3470eabd5cd6eb
SHA512

fc6340368d014f66c079fc9af524fe2ce0cfd92f0fe61525242b8f0f333586c8c7627ee78f40f86e19f8b3c6f6249f7e9ff8955e11bfbcadf66824e024ef7e2d
SSDEEP

3072:0Ttz/7HY/M9V4CUYgCLSCxRwVoVGMrmB9N39//lOpcheMS+DsdLoP6WL:0Ttj74SVZxMAYL3ZESh/DSnq

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
010bfecde50332828913b448f3e443eb769f6244c9059cac8b3470eabd5cd6ebN.exe

Files

010bfecde50332828913b448f3e443eb769f6244c9059cac8b3470eabd5cd6ebN.exe
.exe windows:4 windows x86 arch:x86

df5417bf0d82371b9d77c25c1ebed65e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_DEBUG_STRIPPED

Imports

oleacc

LresultFromObject
CreateStdAccessibleObject

kernel32

WriteConsoleInputVDMA
CompareFileTime
GetProcessHandleCount
GetFullPathNameW
EnumResourceNamesA
FreeEnvironmentStringsW
MoveFileW
SearchPathW
GetShortPathNameW
SetFileTime

ole32

CoCreateInstance
CoInitializeEx
CreateStreamOnHGlobal
CoTaskMemFree
CoTaskMemAlloc
CoUninitialize
CoInitialize

shell32

SHGetFolderPathW
ShellExecuteW
CommandLineToArgvW
SHFileOperationW
ShellExecuteExW

user32

DestroyWindow
PostMessageW
ReleaseDC
IsDlgButtonChecked
LoadIconW
IsWindow
GetWindowModuleFileNameW
SetWindowLongW
GetDlgCtrlID
SetWindowTextW
PostQuitMessage
GetDC
CreateCursor
GetFocus
MsgWaitForMultipleObjects

shlwapi

PathCombineW
PathRemoveFileSpecW
SHGetValueW
PathAppendW
PathFileExistsW

comctl32

PropertySheetW

Sections

.text
Size: 80KB - Virtual size: 80KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 74KB - Virtual size: 73KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idive
Size: 1024B - Virtual size: 248KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

df5417bf0d82371b9d77c25c1ebed65e

Headers

File Characteristics

Imports

oleacc

kernel32

ole32

shell32

user32

shlwapi

comctl32

Sections

.text Size: 80KB - Virtual size: 80KB

.rdata Size: 1KB - Virtual size: 1KB

.data Size: 74KB - Virtual size: 73KB

.idive Size: 1024B - Virtual size: 248KB

.text
Size: 80KB - Virtual size: 80KB

.rdata
Size: 1KB - Virtual size: 1KB

.data
Size: 74KB - Virtual size: 73KB

.idive
Size: 1024B - Virtual size: 248KB