bcf94d95d8b116327c818ee00501670fe21f552da4a6ca4649bf164daad2ffe6[.]exe

General

Target

bcf94d95d8b116327c818ee00501670fe21f552da4a6ca4649bf164daad2ffe6.exe
Size

120KB
MD5

0ded0e035d042371da764757ba9699d5
SHA1

4cf6e6dad15b8852081818033df4175b9efb94e6
SHA256

bcf94d95d8b116327c818ee00501670fe21f552da4a6ca4649bf164daad2ffe6
SHA512

01ff2c9fb907bef762891e953768a67a6e48b45580deb4a52fa0eed98d070cc5fd1cd7bf1c61e8ceb3dd1193628c9a1184fab5ccab0a5dd57a49bc8c92713b97
SSDEEP

1536:zKhft65BoLc7R5CYPZzXu7iDAzdOyDQJML7/9Ad+ekRwVqwQwbtTW9vKjr6KYR2+:EOW4VDs/DQ8AvVmw936Ka2KmrS65COEn

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bcf94d95d8b116327c818ee00501670fe21f552da4a6ca4649bf164daad2ffe6.exe

Files

bcf94d95d8b116327c818ee00501670fe21f552da4a6ca4649bf164daad2ffe6.exe
.exe windows:4 windows x86 arch:x86

831ad354320e74bd3404eded90801e7c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

WriteConsoleW
HeapDestroy
CreatePipe
GetProcessHeap
CopyFileA
GetStartupInfoA
DisconnectNamedPipe
GetStdHandle
GetCommandLineA
SetEvent
GetCurrentDirectoryA
ResumeThread
GetFileAttributesW
WriteConsoleW
DeleteFileA
lstrcpyA
lstrlenW
WriteConsoleW
GetModuleHandleA
GetPriorityClass
VirtualProtect

mmcndmgr

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllRegisterServer

cryptui

LocalEnroll
CryptUIWizImport
CryptUIWizBuildCTL
CryptUIDlgViewContext
WizardFree
DllRegisterServer
CryptUIWizDigitalSign
DllUnregisterServer
CryptUIStartCertMgr
LocalEnroll
WizardFree
CryptUIWizBuildCTL
CryptUIWizExport

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 264B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 110KB - Virtual size: 110KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 177B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.impdata
Size: 512B - Virtual size: 195B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

831ad354320e74bd3404eded90801e7c

Headers

File Characteristics

Imports

kernel32

mmcndmgr

cryptui

Sections

.text Size: 3KB - Virtual size: 2KB

.data Size: 4KB - Virtual size: 3KB

.rdata Size: 512B - Virtual size: 264B

.rsrc Size: 110KB - Virtual size: 110KB

.rdata Size: 512B - Virtual size: 177B

.impdata Size: 512B - Virtual size: 195B

.text
Size: 3KB - Virtual size: 2KB

.data
Size: 4KB - Virtual size: 3KB

.rdata
Size: 512B - Virtual size: 264B

.rsrc
Size: 110KB - Virtual size: 110KB

.rdata
Size: 512B - Virtual size: 177B

.impdata
Size: 512B - Virtual size: 195B