8d1d5fd08180bb1591c1d69518fc87e0 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

8d1d5fd08180bb1591c1d69518fc87e0
Size

162KB
MD5

8d1d5fd08180bb1591c1d69518fc87e0
SHA1

7d0b7af86ba9e72014d3bfada34ee7055d752bd7
SHA256

77f912c76416934558efb6c9973c1aba2912507f98fe1139d8020babc12d4bc7
SHA512

64938bea2dffbca60570bf32c2cf60081ff0299eabfecb360f612ffe2e0ed2e850e7cb6fbd04d1cfbcc23a833b53b5e1db94a8a1a116fc1a88b1f0c61d3ec2d6
SSDEEP

1536:BcnILfqJkrngStSEmOAlj7hBVGVPYeuSnED1m61WNJPbtXe9xgv0LuIId/p1rnl2:vNnw9pS7lED1ZyP4MV/ptRil7w1ITSl

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8d1d5fd08180bb1591c1d69518fc87e0

Files

8d1d5fd08180bb1591c1d69518fc87e0
.exe windows:5 windows x86 arch:x86

59ec377a96a5076bf30c0b18d23ff3c5

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ExitProcess
GetLocalTime
HeapFree
CopyFileExA
GetCommandLineA
lstrcmpA
GetCPInfo
OpenFileMappingA
GetStdHandle
FindClose
GetFileType
FreeResource
ReadFile
FormatMessageA
FlushFileBuffers
GetFileTime
HeapAlloc
lstrcatA
ExitThread

advapi32

RegDeleteKeyW
RegCreateKeyExA
RegCreateKeyA
RegCreateKeyA
RegOpenKeyExA
RegDeleteValueA
RegEnumKeyA
RegGetKeySecurity

user32

CopyRect
CopyIcon
IsWindow
GetCursor
GetDC
CreateIcon

Sections

.18g33
Size: 32KB - Virtual size: 32KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.c200
Size: 15KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.e0ag
Size: 113KB - Virtual size: 472KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.cd60
Size: 1024B - Virtual size: 875B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ