8b95efd16205658619dd2ba7cc7482c3 | Triage

Sharing

General

Target

8b95efd16205658619dd2ba7cc7482c3
Size

49KB
MD5

8b95efd16205658619dd2ba7cc7482c3
SHA1

6e47794c7c9185f330c3ecc8bca3e14a1518d830
SHA256

966138062c6ebfb50c1a2e61ee786827008ec81e1d0f2dac1890fede46b36bc4
SHA512

2099e54cacd8886c97475875241351ef1405ff15ea1bb1aa81ef570602f0bd5225a25365e149b953885598653705f1a9953857e6fd57f4e218eae9b3f0818800
SSDEEP

768:JxXVDhLzFA2FIh84YhgPNX0qSALoSdP/tln8kDDXkezIGwx4fGdsMRXUKDOkMdHD:Jx1lLFM825TLo+NyMwxQG6B3MYsi1

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8b95efd16205658619dd2ba7cc7482c3

Files

8b95efd16205658619dd2ba7cc7482c3
.exe windows:4 windows x86 arch:x86

98e5fd01d13077a29d705dd7633a51fb

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

EnumResourceLanguagesW
EraseTape
ExitProcess
FreeEnvironmentStringsW
GenerateConsoleCtrlEvent
GetACP
GetLongPathNameA
HeapAlloc
LockFile
SetCalendarInfoA
SetEvent
SetThreadIdealProcessor
TlsGetValue
UnhandledExceptionFilter
WaitNamedPipeA

advapi32

AccessCheck
AdjustTokenPrivileges
BuildExplicitAccessWithNameW
EnumDependentServicesW
GetSecurityDescriptorOwner
OpenBackupEventLogA
PrivilegedServiceAuditAlarmW
RegDeleteKeyW
RegSetValueExA
RegisterEventSourceW
SetEntriesInAclA
SetSecurityDescriptorOwner

user32

CreateCaret
CreateDesktopA
DdeSetQualityOfService
DrawTextExA
EndDeferWindowPos
FindWindowA
FreeDDElParam
GetDoubleClickTime
GetMonitorInfoA
IsClipboardFormatAvailable
ModifyMenuW
RedrawWindow
SetPropA
SetUserObjectInformationW
UnpackDDElParam

gdi32

CreateBitmap
CreateRectRgnIndirect
ExtSelectClipRgn
GdiSetBatchLimit
GetBitmapDimensionEx
GetCharWidth32W
GetCharWidthFloatA
GetCharWidthW
GetTextExtentPoint32W
SelectObject

Sections

.text
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 48KB - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE