8cfcb6f613c17e663bbf9c829d6f995c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

8cfcb6f613c17e663bbf9c829d6f995c
Size

724KB
MD5

8cfcb6f613c17e663bbf9c829d6f995c
SHA1

4d8f2791b1e0eb10a5a7482194685145ae50ccb7
SHA256

397a62dc0f95a9e4088b4f55b451681be0f5a566e9b90add4061bc0b2f350e1a
SHA512

0579104cf4748bf4bba1cc23f6657f39e1dc613c85a01394c9e5ff372a27f63a9081ea0d5801f63e6df8eed6880392b6a727e4dd88f53d56227924a353b87c27
SSDEEP

12288:GUXpCNv+iQVEtBMmdMa3JLi779XzZt58eKpieycV74SxV9Xwd:GeMNv+YzLi7Lv8eKDV7RV9Xm

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8cfcb6f613c17e663bbf9c829d6f995c

Files

8cfcb6f613c17e663bbf9c829d6f995c
.exe windows:4 windows x86 arch:x86

90b018c3afc33bce75262b7a31e5574f

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetUserDefaultLangID
FindClose
FindFirstFileW
GetLocaleInfoA
GetVolumeInformationW
GetFullPathNameW
CreateFileW
SetErrorMode
GetVersionExW
FileTimeToLocalFileTime
GetFileAttributesW
GetFileTime
HeapFree
HeapAlloc
GetProcessHeap
RtlUnwind
HeapValidate
IsBadReadPtr
RaiseException
ExitProcess
VirtualProtect
VirtualAlloc
GetSystemInfo
VirtualQuery
SetUnhandledExceptionFilter
QueryPerformanceCounter
GetSystemTimeAsFileTime
FreeEnvironmentStringsA
GetStdHandle

msvcrt

_initterm
_iob
pow
fprintf
exp
?terminate@@YAXXZ
free
_initterm
malloc
_adjust_fdiv
exit
_CIpow
_ftol
__CxxFrameHandler
_purecall
_except_handler3

msvfw32

ICInfo
ICOpen
ICSendMessage
ICClose
ICGetInfo

Sections

.text
Size: 160KB - Virtual size: 159KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 65KB - Virtual size: 65KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ