8844d0114ac57d839f416e40942f801f

General

Target

8844d0114ac57d839f416e40942f801f
Size

28KB
MD5

8844d0114ac57d839f416e40942f801f
SHA1

2d949b8edf1774e1e6e38267e3ae3a03a456741e
SHA256

e0bd38da2059736778bb060be5b08cc7337847902902ed6800d897bf88af20bf
SHA512

6ba52aca56f03e82380f956a839ec88e961ec06aa95149692cf1923d6c981b4a1ce6a2fdf1532aff4c2034f1d11271c99e1e35fdf0b3a194449d09aeae7c358e
SSDEEP

384:Xjvst87+tDVU62wbVAbVzyBfazau8VHIDho4+gcvlbf8nhp4mO8ezoW:Xgi6tDVU69Wb93nho4+Hb9mlCZ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8844d0114ac57d839f416e40942f801f

Files

8844d0114ac57d839f416e40942f801f
.dll windows:1 windows x86 arch:x86

81b7e969a8dd5bd2b6789e9317fe2ab5

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

user32

CharUpperA
MessageBoxA

kernel32

CloseHandle
CreateEventA
CreateFileA
CreateThread
DeleteCriticalSection
EnterCriticalSection
ExitProcess
ExitThread
FreeEnvironmentStringsA
GetACP
GetCPInfo
GetCommandLineA
GetCommandLineW
GetCurrentThreadId
GetEnvironmentStringsA
GetFileType
GetLastError
GetModuleFileNameA
GetModuleFileNameW
GetModuleHandleA
GetOEMCP
GetProcAddress
GetStdHandle
GetVersion
InitializeCriticalSection
LeaveCriticalSection
LoadLibraryA
MultiByteToWideChar
ResumeThread
SetConsoleCtrlHandler
SetEnvironmentVariableA
SetEnvironmentVariableW
SetLastError
SetStdHandle
SetUnhandledExceptionFilter
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue
UnhandledExceptionFilter
VirtualAlloc
VirtualFree
VirtualQuery
WideCharToMultiByte
WriteFile

Exports

Exports

crypt
decrypt
getblocksize
getciphername
getkeysize
setup

Sections

AUTO
Size: 22KB - Virtual size: 22KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

DGROUP
Size: 1024B - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size:

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size:

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

81b7e969a8dd5bd2b6789e9317fe2ab5

Headers

File Characteristics

Imports

user32

kernel32

Exports

Exports

Sections

AUTO Size: 22KB - Virtual size: 22KB

.idata Size: 1KB - Virtual size: 1KB

DGROUP Size: 1024B - Virtual size: 9KB

.edata Size: 512B - Virtual size:

.reloc Size: 2KB - Virtual size:

AUTO
Size: 22KB - Virtual size: 22KB

.idata
Size: 1KB - Virtual size: 1KB

DGROUP
Size: 1024B - Virtual size: 9KB

.edata
Size: 512B - Virtual size:

.reloc
Size: 2KB - Virtual size: