8d8ca1d15304640ed15582afb39e3149

General

Target

8d8ca1d15304640ed15582afb39e3149
Size

87KB
MD5

8d8ca1d15304640ed15582afb39e3149
SHA1

3474dd535c88aeead255d14317eee7292c4e3154
SHA256

b2a1f23dd972b6af07835523c96d1c0137b62dccb9225193d4866bdfcb651e72
SHA512

53cd083bc48c9d4dcba83510428e31e187b836f9d361f0e8f28153fbb96914c563b2e2b14062e06f02833006f9da04b8f28df2e995fbc3523b12aa90ca4c8fa4
SSDEEP

1536:Kz+BxO+0uW57ENCApHY2Ww/1UTkuxUoqiwaW4MqGBbM5:Kz6O+c57E4ZmyT5UUe4MqGBb0

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8d8ca1d15304640ed15582afb39e3149

Files

8d8ca1d15304640ed15582afb39e3149
.dll windows:4 windows x86 arch:x86

a7d73b9d749a10e6ddc08256043bcec7

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CloseHandle
DeleteFileA
EnumResourceTypesA
ExitProcess
GetACP
GetCommandLineA
GetLastError
GetModuleHandleA
GetOEMCP
GetStartupInfoA
GetVersionExA
HeapAlloc
InterlockedIncrement
LoadResource
RtlUnwind
SetLastError
TlsSetValue
lstrcmpiA

advapi32

RegEnumKeyA
RegLoadKeyA
RegOpenKeyExA
RegQueryValueA
RegCloseKey

wininet

InternetSetOptionExA
InternetGetCookieA
InternetQueryDataAvailable
InternetOpenA
InternetGetLastResponseInfoA
InternetSetStatusCallbackA
InternetCrackUrlA
InternetConnectA
InternetCloseHandle
HttpSendRequestA
HttpOpenRequestA
HttpAddRequestHeadersA
HttpQueryInfoA

user32

DialogBoxParamA
OemToCharW
MessageBoxA
GetMenu
CreateIconFromResource
CreateDesktopW
CopyImage
CharPrevA

shell32

ShellExecuteExW
ShellExecuteExA
SHGetPathFromIDListA
SHGetMalloc
SHGetFileInfoA
SHGetDesktopFolder

Exports

Exports

Fkb
Ucjeidbeo
Uwrssl

Sections

.text
Size: 32KB - Virtual size: 32KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 22KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 26KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a7d73b9d749a10e6ddc08256043bcec7

Headers

File Characteristics

Imports

kernel32

advapi32

wininet

user32

shell32

Exports

Exports

Sections

.text Size: 32KB - Virtual size: 32KB

.rdata Size: 22KB - Virtual size: 24KB

.data Size: 4KB - Virtual size: 4KB

.idata Size: 2KB - Virtual size: 4KB

.rsrc Size: 26KB - Virtual size: 28KB

.text
Size: 32KB - Virtual size: 32KB

.rdata
Size: 22KB - Virtual size: 24KB

.data
Size: 4KB - Virtual size: 4KB

.idata
Size: 2KB - Virtual size: 4KB

.rsrc
Size: 26KB - Virtual size: 28KB