8ca1d7b5fafe132c8b6ec351643e3776

General

Target

8ca1d7b5fafe132c8b6ec351643e3776
Size

327KB
MD5

8ca1d7b5fafe132c8b6ec351643e3776
SHA1

ab684f9844b17b52e5cfaae49ca82072c3bb94b6
SHA256

c6ebb0a7c16b8b84361aa85d2391912d2846d2c8e705d542a20f123d273d6525
SHA512

9edf50cd5e771bc8c3a5b226392a846d339c14d800929f982650706b325d46eaccddb6933b2c49ce1d8a4c1337317791746b6aa561ee0ebdff996cf0e06c494a
SSDEEP

3072:9zN34Mm22Z1NJ04TiYj5XgF7NXl+MUbhWJMoPjHcx8edPMfdxVKI1KeQ1crUJi:9zhzjaPeYqJN1+MahWJLHchMBAeQ1qU

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8ca1d7b5fafe132c8b6ec351643e3776

Files

8ca1d7b5fafe132c8b6ec351643e3776
.exe windows:4 windows x86 arch:x86

a46922156a7ad61a1fd5c68f0f162fa5

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

CreateEllipticRgn
CreateFontW
CreateRectRgn
ExtSelectClipRgn
FillRgn
GetBitmapBits
GetClipRgn
GetCurrentObject
GetEnhMetaFileDescriptionA
GetMapMode
GetWindowExtEx
InvertRgn
LPtoDP
PolyDraw
SetArcDirection
SetTextColor

kernel32

CreateProcessW
FindFirstFileW
GetEnvironmentVariableA
GetExitCodeProcess
GetFileSize
GetLocaleInfoW
GetSystemTimeAsFileTime
GetUserDefaultLangID
GetVersionExW
GlobalLock
HeapCreate
IsBadReadPtr
LoadLibraryExW
MulDiv
MultiByteToWideChar
OutputDebugStringA
SetEnvironmentVariableA
TlsSetValue
VirtualProtect
WideCharToMultiByte

user32

CheckMenuItem
DestroyMenu
DrawFrameControl
GetClassInfoA
GetClientRect
GetDC
GetForegroundWindow
GetIconInfo
GetMenuStringA
GetSysColor
IsRectEmpty
LoadCursorA
MapWindowPoints
MessageBeep
OemToCharA
RemoveMenu
ScrollWindow
SendMessageA
SetRect
SetScrollInfo
SetWindowLongA
ShowWindow
SystemParametersInfoA
TranslateMessage
UnhookWindowsHookEx
WinHelpA
wsprintfA

Sections

.text
Size: 88KB - Virtual size: 88KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 98KB - Virtual size: 97KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 18KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

ggIGxS3i
Size: 120KB - Virtual size: 140KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

a46922156a7ad61a1fd5c68f0f162fa5

Headers

File Characteristics

Imports

gdi32

kernel32

user32

Sections

.text Size: 88KB - Virtual size: 88KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 98KB - Virtual size: 97KB

.rsrc Size: 18KB - Virtual size: 17KB

ggIGxS3i Size: 120KB - Virtual size: 140KB

.text
Size: 88KB - Virtual size: 88KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 98KB - Virtual size: 97KB

.rsrc
Size: 18KB - Virtual size: 17KB

ggIGxS3i
Size: 120KB - Virtual size: 140KB