8cb81b468f4b36e023ccd7ded2299671 | Triage

Sharing

General

Target

8cb81b468f4b36e023ccd7ded2299671
Size

18KB
MD5

8cb81b468f4b36e023ccd7ded2299671
SHA1

e6726559059f1db2550e0a95d08341826c30238a
SHA256

b2e84a37e867ee5ed04a17ecce9672fa3e3972fd3fb7496c240304375e71f64a
SHA512

a352a6bd8dbd0b60d8f0042bb813e4d73802328831df512dff3cf891988c38e21bb157871e4607fdb199a15e957ed66098220c3c264877beca462af7f4db4403
SSDEEP

192:TMIF1nbs+AuqbKzKRhw5/ZOWMW5nZ8E/R6JlBFMOFi:I66+Auqb4qh86W5Z86oFMoi

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8cb81b468f4b36e023ccd7ded2299671

Files

8cb81b468f4b36e023ccd7ded2299671
.dll windows:1 windows x86 arch:x86

59faf53e9207beacd033d7177c3967f5

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

shell32

ShellExecuteA

urlmon

URLDownloadToFileA

kernel32

ExitProcess
GetEnvironmentStringsA
GetSystemDirectoryA
GetVersionExA
GetWindowsDirectoryA
CopyFileA
RtlUnwind
RtlZeroMemory
Sleep
lstrcatA
lstrlenA
CreateThread

advapi32

RegCreateKeyExA
RegCloseKey
RegSetValueExA

crtdll

_fdopen
_open_osfhandle
fclose
_cexit
malloc
printf
raise
setbuf
strcat
strcpy

Exports

Exports

_DllMain@12

Sections

.text
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 84B - Virtual size: 84B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ

.data
Size: 360B - Virtual size: 360B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 224B - Virtual size: 224B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_DISCARDABLE

.edata
Size: 80B - Virtual size: 80B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ