8b14508ec472b347998e693e24452a0f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

8b14508ec472b347998e693e24452a0f
Size

45KB
MD5

8b14508ec472b347998e693e24452a0f
SHA1

73effa003305874092e61f97721a2cd55db0fc90
SHA256

e81ba87f72aa87c77c0c1362befd3eedb8904cb14ec35253900c0d341528d607
SHA512

96de16fcd5f9c6230265756ee86490ffb80b7c1b8f1f947562b14837dc5ca72121b78b7f0a44bd9ce472a1c776b2927d232e9b38a17c2f577bb1d745d192fd62
SSDEEP

24:OEhu70vdT80878S8fhXD8bRey0DBmIdtSpqrjvIvBo1f/c:OEPFT808R8RD8VeLBvdDrjQvBo1f/c

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8b14508ec472b347998e693e24452a0f

Files

8b14508ec472b347998e693e24452a0f
.exe windows:4 windows x86 arch:x86

2abcbfff3d48fb0cac0930dca22a40b5

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleA
AddFontMemResourceEx
AddFontResourceA

gdi32

AddFontMemResourceEx
AddFontResourceA

Sections

.code
Size: 21KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tmp
Size: 23KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.idata
Size: 512B - Virtual size: 297B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE