8aeb3b9c399b761d2a23f0715ad7f13c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

8aeb3b9c399b761d2a23f0715ad7f13c
Size

50KB
MD5

8aeb3b9c399b761d2a23f0715ad7f13c
SHA1

f61126bc8527776071b16f18ebaaf9158bc9984d
SHA256

bb822edc3beaf7c9e2fea79b1023f03dc2956cfc73a9509dd40d9caa72406cd4
SHA512

a8d83204d873e09a1270bad8b850618e7efc1a4e22dba86fb94d2f7f4c8b36e06e78642a399eded3212eebc3329a43f56f320bdd1209b0681fa79f4838043583
SSDEEP

1536:SfO4tcwr3HerDYFvMZqTx8xiaQw7a+8OzBEvwT+:SfOdUHerm0ZqTxGinw78O9EvwT+

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8aeb3b9c399b761d2a23f0715ad7f13c

Files

8aeb3b9c399b761d2a23f0715ad7f13c
.dll windows:4 windows x86 arch:x86

5cc4cfaa3f99ac9276b615638e1fd139

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CloseHandle
CompareStringW
DeviceIoControl
ExitProcess
FindResourceA
GetACP
GetCommandLineA
GetCurrentThread
GetModuleHandleA
GetOEMCP
GetStartupInfoA
GetTimeZoneInformation
GlobalAlloc
HeapAlloc
HeapCreate
HeapReAlloc
InitializeCriticalSection
MultiByteToWideChar
OutputDebugStringA
RtlUnwind
SetEndOfFile
SetLastError
SetPriorityClass
SetUnhandledExceptionFilter
TerminateThread
lstrcatA

msvcrt

_cexit
fwprintf
rand
wcscmp
_stricmp

user32

FillRect
GetWindowLongA
LoadIconA
UpdateWindow
CreatePopupMenu

oleaut32

SetErrorInfo
OleLoadPicture
OleIconToCursor
GetErrorInfo
VarBstrCmp
VarBstrCat
SysReAllocString
OleLoadPicturePath
SafeArrayAllocDescriptor
SafeArrayAccessData
RegisterTypeLi
ClearCustData

shlwapi

StrStrA
StrToIntA
PathStripPathA

Exports

Exports

DeleteAllActivatorsForClsid
GetUpdateHTMLDescription
NxReportCooking

Sections

.text
Size: 38KB - Virtual size: 40KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 10KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ