08240fefba5f572885a3d3b85ee0fcd7

General

Target

08240fefba5f572885a3d3b85ee0fcd7
Size

268KB
MD5

08240fefba5f572885a3d3b85ee0fcd7
SHA1

fda2786db2f89c7aa43c2455bed177ffbb4820f0
SHA256

e0d32f6d0783d8a748cfc5c45e088258ba8eb0bef87a68ff99ef6ac1352b8a20
SHA512

5a2df67502598bccf459020389db5748e8ac65039e06210fea4bbf1af3c52b8513143e6a722d15343bb96e49a21654fcb423268223ea8dedfbbf8d667db0a5a7
SSDEEP

6144:QxYiodPvjrqABsulge3cZ5upkDbYo3WygIhXXP41cocaCMi3nA:UYiMqAjlg75FDbV3WyggXXP41cjBMU

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
08240fefba5f572885a3d3b85ee0fcd7

Files

08240fefba5f572885a3d3b85ee0fcd7
.exe windows:4 windows x86 arch:x86

4597e8bf124b01c698d627cd7dc1476c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetPrivateProfileStringA
GetPrivateProfileIntA
ReleaseMutex
CloseHandle
OpenMutexA
CreateMutexA
GetStartupInfoA
WideCharToMultiByte
GetEnvironmentStrings
GetStringTypeA
LCMapStringW
GetStringTypeW
MultiByteToWideChar
LoadLibraryA
LCMapStringA
HeapReAlloc
GetProcAddress
HeapAlloc
GetOEMCP
VirtualAlloc
GetACP
GetModuleHandleA
GetModuleFileNameA
GetCommandLineA
GetVersion
ExitProcess
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetCPInfo
HeapDestroy
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
HeapCreate
VirtualFree
HeapFree
RtlUnwind
WriteFile

user32

SetWindowPos
DialogBoxParamA
GetSystemMetrics
wsprintfA
MessageBoxA
LoadBitmapA
GetDlgItem
BeginPaint
EndDialog
EndPaint
MoveWindow
GetWindowRect

gdi32

DeleteObject
BitBlt
SelectObject
DeleteDC
CreateCompatibleDC

advapi32

RegCloseKey
RegQueryValueExA
RegOpenKeyExA

shell32

ShellExecuteA

Sections

.text
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 244KB - Virtual size: 240KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4597e8bf124b01c698d627cd7dc1476c

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shell32

Sections

.text Size: 12KB - Virtual size: 11KB

.rdata Size: 4KB - Virtual size: 2KB

.data Size: 4KB - Virtual size: 4KB

.rsrc Size: 244KB - Virtual size: 240KB

.text
Size: 12KB - Virtual size: 11KB

.rdata
Size: 4KB - Virtual size: 2KB

.data
Size: 4KB - Virtual size: 4KB

.rsrc
Size: 244KB - Virtual size: 240KB