8be0eff90a58582a7ef3aec4b7084195

General

Target

8be0eff90a58582a7ef3aec4b7084195
Size

132KB
MD5

8be0eff90a58582a7ef3aec4b7084195
SHA1

0a1b2cc3e07dbb69c9a7bbc92de05a0809377136
SHA256

7dcd93fda03eae3c44a1506f2b605c2ed0bac04bdab9a5c2a2e966382a9bdb27
SHA512

a370c3966ed6a3ee3600aa91032f55ff2cdb40d9c8226b88b2d7e6eb562d042b292c5047004baa7539557e94f3ec0ee7c74d79acf639762de13966fdd1d5f992
SSDEEP

3072:fLnxYZ2Pz4oPbpZin37JHoxPphPG3qpd3mDifVYwQ:fLnidoPtiAClDSVt

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8be0eff90a58582a7ef3aec4b7084195

Files

8be0eff90a58582a7ef3aec4b7084195
.exe windows:4 windows x86 arch:x86

35720e3022e6e96bce96c0c36bcf07ba

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ole32

CoInitialize
CoRegisterSurrogate
CoRegisterClassObject
OleUninitialize
OleInitialize

avifil32

AVISaveOptions
AVIFileInit
AVIFileOpenW
AVIFileExit
AVIFileEndRecord
AVIFileInfoW
AVISaveOptionsFree

kernel32

GetProcAddress
LoadLibraryA
SetEndOfFile
ReadFile
VirtualAlloc
CreateFileA
LoadLibraryW
ExitProcess
GetFileTime
GetModuleFileNameW
WriteConsoleW
SetEnvironmentVariableW
HeapFree
HeapAlloc
GetVersion
EnterCriticalSection
LeaveCriticalSection
GetLastError
CloseHandle
WriteFile
SetFilePointer
InitializeCriticalSection
HeapDestroy
HeapCreate
VirtualFree
DeleteCriticalSection
FatalAppExitA
HeapReAlloc
IsBadWritePtr
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
FreeEnvironmentStringsA
MultiByteToWideChar
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetEnvironmentStrings
GetCommandLineW
GetCommandLineA
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
GetCurrentThreadId
TlsSetValue
TlsAlloc
TlsFree
SetLastError
TlsGetValue
GetCurrentThread
RtlUnwind
GetModuleFileNameA
GetStringTypeA
GetStringTypeW
SetStdHandle
FlushFileBuffers

Sections

.text
Size: 28KB - Virtual size: 25KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 60KB - Virtual size: 58KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 40KB - Virtual size: 642KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

35720e3022e6e96bce96c0c36bcf07ba

Headers

File Characteristics

Imports

ole32

avifil32

kernel32

Sections

.text Size: 28KB - Virtual size: 25KB

.rdata Size: 60KB - Virtual size: 58KB

.data Size: 40KB - Virtual size: 642KB

.text
Size: 28KB - Virtual size: 25KB

.rdata
Size: 60KB - Virtual size: 58KB

.data
Size: 40KB - Virtual size: 642KB