8a7d4a6473d02ee334dc0b09441e33ec

General

Target

8a7d4a6473d02ee334dc0b09441e33ec
Size

166KB
MD5

8a7d4a6473d02ee334dc0b09441e33ec
SHA1

2e7a6519fd5db6471baab8e9a1528b18c2ff6bfb
SHA256

c0463cfe3339469d1c495c349f3ac9b046dab64e62f2acbcdd17fe9625970ce5
SHA512

6c6009be4b24a64ba1ac23c591832f3f1fac9b4c23a10e5cbbfa37941a16aa4e797e965e35edfd0dc3a99ec221200c1b66d1ce34610fa0f3d22cafd72466838d
SSDEEP

3072:j7EfTLDlSaDTl6Lp8z8FSHlzpr4lxClMWb/1rBvfDKR9LLYiSqGbT1:4lz4FzuL+hLEq

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8a7d4a6473d02ee334dc0b09441e33ec

Files

8a7d4a6473d02ee334dc0b09441e33ec
.exe windows:4 windows x86 arch:x86

55f8d9016322ae8bdb4093635cbc7f59

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleFileNameW
LoadLibraryW
GlobalSize
FindClose
lstrcpynW
GetSystemInfo
VirtualAlloc
GetProcAddress
LoadLibraryA
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
HeapSize
LCMapStringW
LCMapStringA
VirtualProtect
GetLocaleInfoA
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetVersionExA
ExitProcess
TerminateProcess
GetCurrentProcess
WriteFile
GetStdHandle
GetModuleFileNameA
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetLastError
GetEnvironmentStringsW
SetHandleCount
GetFileType
HeapDestroy
HeapCreate
VirtualFree
HeapFree
GetStringTypeA
MultiByteToWideChar
GetStringTypeW
GetACP
GetOEMCP
GetCPInfo
HeapAlloc
HeapReAlloc
IsBadWritePtr
RtlUnwind
InterlockedExchange
VirtualQuery
GetSystemTimeAsFileTime

user32

OpenClipboard
RegisterWindowMessageW
ToAscii
InsertMenuW

comdlg32

ChooseFontA

ole32

StgOpenAsyncDocfileOnIFillLockBytes

Sections

.text
Size: 22KB - Virtual size: 22KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 133KB - Virtual size: 370KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

55f8d9016322ae8bdb4093635cbc7f59

Headers

File Characteristics

Imports

kernel32

user32

comdlg32

ole32

Sections

.text Size: 22KB - Virtual size: 22KB

.rdata Size: 5KB - Virtual size: 4KB

.data Size: 133KB - Virtual size: 370KB

.rsrc Size: 4KB - Virtual size: 4KB

.text
Size: 22KB - Virtual size: 22KB

.rdata
Size: 5KB - Virtual size: 4KB

.data
Size: 133KB - Virtual size: 370KB

.rsrc
Size: 4KB - Virtual size: 4KB