8b5b0efeb5c1e2f2c58bf8e30850aea6 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

8b5b0efeb5c1e2f2c58bf8e30850aea6
Size

285KB
MD5

8b5b0efeb5c1e2f2c58bf8e30850aea6
SHA1

032ee0065203d7766029ac1c9642546eaffec2f5
SHA256

1753631b39fe9fedafa1e8a92528cf767cc4a07d32b6ea816ad6048338aeb203
SHA512

7223220d8660182691a498e364881a84f98ba8aecafe9c0fa2f40ce751f34508dc28672e5fbaccec05d29b89c59086b35709df7609bbddf49eaec742866dbd52
SSDEEP

6144:MdTBoq4TqvNFuMBmmLXW2/ZLSeYW7WDOYMRbr/Czk0kRrL7e:MRKq42OMc0WAcWcC1kSr

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8b5b0efeb5c1e2f2c58bf8e30850aea6

Files

8b5b0efeb5c1e2f2c58bf8e30850aea6
.exe windows:4 windows x86 arch:x86

ace9ef7460e71f645e35e08fd13bd0f1

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

MultiByteToWideChar
GetConsoleOutputCP
TlsGetValue
GetAtomNameA
GetOEMCP
HeapReAlloc
RtlUnwind
SetFilePointer
TlsAlloc
WriteConsoleA
HeapSize
IsValidCodePage
VirtualAlloc
EnumResourceTypesA
GetACP
TlsSetValue
GetUserGeoID
GetDateFormatA
SetStdHandle
GetLocaleInfoA
GetTimeFormatA
GetCPInfo
RaiseException

shell32

SHGetUnreadMailCountW
SHBrowseForFolderA
ShellExecuteExA
SHAppBarMessage
DragAcceptFiles
SHGetPathFromIDListA
SHGetFileInfoA
Shell_NotifyIconA

rpcrt4

RpcStringFreeA

user32

LoadStringA
CharNextA
MessageBoxA
PeekMessageA
DispatchMessageW
GetDesktopWindow
DispatchMessageA
wsprintfA

Sections

.text
Size: 139KB - Virtual size: 138KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 143KB - Virtual size: 271KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ