8c7b9fd201f598be2b4e2b3dfd7e3335 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

8c7b9fd201f598be2b4e2b3dfd7e3335
Size

121KB
MD5

8c7b9fd201f598be2b4e2b3dfd7e3335
SHA1

b69b871d9707d05c087ab36afe4a9e7487a439f5
SHA256

5c677f74802b2afd9581e8357b9e9b5cdc37eb4386cb9528a6ad9234e7eecdbf
SHA512

798d318c5db252e25bbc2ab663b43685b1a55110c686806860b71690cb88edb673dccda0994b4d7a76963369fe3240f0002b5a76ce6baa21b32be39c675ed482
SSDEEP

3072:lZn/R1RmfgWBay3Ws9yHvGU8FjSxSidXanoaH+j:vn/lggnmyH+U8FJ5nom+j

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8c7b9fd201f598be2b4e2b3dfd7e3335

Files

8c7b9fd201f598be2b4e2b3dfd7e3335
.exe windows:4 windows x86 arch:x86

84608d96ac08cdc90a0960b75db534f0

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateFileA
ExitProcess
GetStdHandle
Sleep
GetStartupInfoW
WaitForMultipleObjects
GetFileAttributesW
GetCurrentDirectoryA
WaitForSingleObject
ReleaseMutex
GetModuleHandleA
GetProfileIntA
GetTickCount
SetLastError
GetTickCount
CloseHandle
GetLocalTime
RemoveDirectoryW
GetFileSize
DeleteFileA
CreateMutexW
FindClose
HeapCreate
HeapSize
GetEnvironmentVariableA

user32

CallWindowProcW
GetDC
GetWindowLongA
GetDC
GetDC
GetCursorPos
DispatchMessageW
PeekMessageA
DispatchMessageW
GetDC
GetClassInfoA
MessageBoxA
GetSysColor

wshcon

DllCanUnloadNow
DllCanUnloadNow
DllCanUnloadNow
DllCanUnloadNow

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 1.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 746KB - Virtual size: 745KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ