08c74434fef99eb4b300cd8b95667efc

General

Target

08c74434fef99eb4b300cd8b95667efc
Size

130KB
MD5

08c74434fef99eb4b300cd8b95667efc
SHA1

f4ea1dc9f3bf866ef95b31bf4b6203868d597dfe
SHA256

f023526234a32625c535a0a8b20318958dac2ac7d20ba46605723f6e6d10d826
SHA512

2682e36b47aeb49145d438e5e16c53e3dbbf5217f61298a5d422ef94a9f7269bb77c576bf113d9c8ce21addbf285008da3f0bdc7195a5530178d626165e44649
SSDEEP

1536:ID5CA6fjUP4NuHLerYqoz20J9GJ+UicGvjzicgYTKQAb5f0OwDVQ2hjYrOWcEiCr:GkwYW4Yz2u9GLKjzdg8K5shRxcrOg93

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
08c74434fef99eb4b300cd8b95667efc

Files

08c74434fef99eb4b300cd8b95667efc
.exe windows:4 windows x86 arch:x86

aa911e5878aa3f8a3595890fe1631882

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

CharNextA

kernel32

GetCurrentProcess
GetProcessHeap
DeleteFileW
SetLastError
VirtualAlloc
GetCommandLineW
lstrlenA
GlobalFindAtomA
lstrcmpA
lstrcmpiA
GetUserDefaultLangID
MulDiv
RemoveDirectoryA
GetVersion
GetConsoleOutputCP
GetModuleHandleW
GetCurrentProcessId
GlobalFindAtomW
CopyFileA
lstrlenW
IsDebuggerPresent
lstrcmpiW
DeleteFileA
GetModuleHandleA
SetCurrentDirectoryA
GetTickCount
GetCurrentThreadId
GetLastError
GetThreadLocale
GetACP
GetOEMCP
GetCommandLineA

gdi32

PlayEnhMetaFile
ExcludeClipRect
SetStretchBltMode
IntersectClipRect
GetDIBColorTable
SelectObject
CreatePen
Rectangle
GetClipBox
SetDIBColorTable
SetBkMode
CreatePatternBrush
SetROP2
GetDeviceCaps
SetMapMode
GetTextMetricsA
SelectClipPath
DeleteDC
SelectPalette
GetDCOrgEx
CreateCompatibleBitmap
PatBlt
SetBrushOrgEx
GetPixel
SetTextColor
SetColorSpace
BeginPath
EndPath
SetViewportOrgEx
StartPage
GetEnhMetaFilePaletteEntries
MaskBlt
SaveDC
LPtoDP
EndDoc
GetCharWidth32A
StretchBlt
OffsetViewportOrgEx
EndPage
GetPaletteEntries
BitBlt
LineTo
SetWindowExtEx
MoveToEx
PtVisible

Sections

.text
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 100KB - Virtual size: 100KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

aa911e5878aa3f8a3595890fe1631882

Headers

File Characteristics

Imports

user32

kernel32

gdi32

Sections

.text Size: 10KB - Virtual size: 10KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 100KB - Virtual size: 100KB

.rsrc Size: 16KB - Virtual size: 15KB

.text
Size: 10KB - Virtual size: 10KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 100KB - Virtual size: 100KB

.rsrc
Size: 16KB - Virtual size: 15KB