8bb5d20c9fc407df2c91b264cdfb7749 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

8bb5d20c9fc407df2c91b264cdfb7749
Size

113KB
MD5

8bb5d20c9fc407df2c91b264cdfb7749
SHA1

6e8fb5ece16d91f3af5910e2af97e1e05c0614f4
SHA256

40cc30e1b9a86b238a6ed80f980fff2c89211825b060f58535527c268528f74d
SHA512

3e7606c6be158299ac4a8068bd735c3e1d4fb3b10d6fa711a8018761fc91896d109060821ca87e18c8aa8e30309e02c3825a877ccbc64c826d15c4e7df92772b
SSDEEP

1536:a+EN60HAJ8pgzvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvO:aZN6sqf9qUBjckm4rgC9BF

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8bb5d20c9fc407df2c91b264cdfb7749

Files

8bb5d20c9fc407df2c91b264cdfb7749
.exe windows:4 windows x86 arch:x86

5bd5b34fc9ae4ec498944f274e4be389

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateMutexA
GetExitCodeProcess
ReleaseMutex
lstrcpyA
CloseHandle
lstrlenW
HeapCreate
LoadLibraryExA
SetLastError
GetCurrentThreadId
TlsGetValue
GetProcessHeap
GetStdHandle
UnmapViewOfFile
CreateFileW
GetEnvironmentVariableA
GetModuleHandleA
FindResourceW
GlobalUnlock
GlobalFree

user32

IsWindow
DispatchMessageA
GetDC
GetDlgItem
SetFocus
DrawEdge
CheckRadioButton
CreateWindowExA
CallWindowProcA
DrawMenuBar
FillRect
CreateMenu
GetCaretPos

rsaenh

CPGenKey
CPDeriveKey
CPSignHash
CPDecrypt
CPHashData

msasn1

ASN1BERDecEoid

Sections

.text
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 98KB - Virtual size: 100KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 33KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

hsgergn
Size: - Virtual size: 4KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE