8d83b749e6dc0329a55905937d424741 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

8d83b749e6dc0329a55905937d424741
Size

303KB
MD5

8d83b749e6dc0329a55905937d424741
SHA1

477a1db7ba255be955aa25a448deb7866d90eedf
SHA256

217a2fb7cd40501c83af15e75f92e1ed9a81ccfc20700787d63a3cfdaf02e278
SHA512

6fba404cb057c68f9f4c48136678cf739d7817cfb66e0f74dd3bf29e4028ff75312fcfbdedca869f6191154fdf79447a313a2799bbc516ef3068ee07c67d108f
SSDEEP

6144:8FW3iY0kWEi/4b+BQPNlYy16ch0tiXFchP8ybkTriDz:8FW3nCEi/4bhTYy16G0YXFcBLbQGDz

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8d83b749e6dc0329a55905937d424741

Files

8d83b749e6dc0329a55905937d424741
.exe windows:4 windows x86 arch:x86

4e3c07c1d73fc269e143faa2e4cc7a4a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

TlsGetValue
lstrlenA
WaitForSingleObject
GetStdHandle
HeapReAlloc
GetModuleHandleA
CloseHandle
CompareFileTime
GetVersion
InterlockedExchange
LoadLibraryA
VirtualProtect
GetACP
GetProfileIntA
GetAtomNameA
GetTickCount
GlobalUnlock
GetConsoleCP
FindAtomA
TlsFree
HeapWalk

user32

EnableScrollBar
GetScrollRange
MessageBoxA
SetWindowPos
GetMenu
GetSubMenu
GetDlgItem
ModifyMenuA
DispatchMessageA
GetMenuStringA
UpdateWindow
PaintDesktop
GetWindowTextA
TranslateMessage
InsertMenuA
ShowWindow
DialogBoxParamA
CopyRect
CreateCaret
InflateRect
SetPropA
EqualRect
PostMessageA
GetKeyboardLayout
SubtractRect
PostQuitMessage
LoadIconA
DestroyMenu

msi

MsiEnumProductsA
MsiCloseHandle
MsiEnumClientsA
MsiDoActionA
MsiGetMode

uxtheme

GetThemeBool

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 620KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 25KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ