8c059bbb68947acb6e15f91c9036ddfe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

8c059bbb68947acb6e15f91c9036ddfe
Size

141KB
MD5

8c059bbb68947acb6e15f91c9036ddfe
SHA1

f9f9e150edb07fe81902278b752d5f9f51d73806
SHA256

0cc14fd810834f84fc3432536edcedd411a079d623045192fa76d5089574ae13
SHA512

1e2f802242a4e3be51ab960da3c8649d2bfe26e2f194a991ca2d93dbb36d0608f68d447f2f186e3a4fb86447243711dcc808b0bc56f77ea171b4aa254d5abe19
SSDEEP

3072:RQtlqRpllGmF/HPD/jxhaQ9tSDMFKLuQO:RQHolDF/HPJhaUt60KyQO

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8c059bbb68947acb6e15f91c9036ddfe

Files

8c059bbb68947acb6e15f91c9036ddfe
.exe windows:1 windows x86 arch:x86

213ab2059379569923b559a8cfbc9176

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

__set_app_type
_acmdln
_XcptFilter
__getmainargs
iswascii
__p__commode
__p__fmode
exit
__setusermatherr
_adjust_fdiv
_cputs
_exit
atoi
pow
memcpy
_except_handler3
_getdllprocaddr
_wfsopen
_initterm
_controlfp

gdi32

SetTextAlign
LineTo
DeleteDC
CreatePen
ExtTextOutA
SelectClipRgn
CreateCompatibleBitmap
CreateRectRgn

user32

MoveWindow
IsWindowVisible
GetWindow
SetWindowLongA

kernel32

Module32First
GetStartupInfoA
TlsSetValue
GetModuleHandleA

ole32

CoUninitialize
CoSetProxyBlanket
CoCreateInstance

Sections

.text
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 130KB - Virtual size: 129KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 101B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ