8a99db68f5d4092a3a6fa9492dd57e2b[.]bin | Triage

Sharing

General

Target

8a99db68f5d4092a3a6fa9492dd57e2b.bin
Size

44KB
MD5

8a99db68f5d4092a3a6fa9492dd57e2b
SHA1

942b1a54df699f3b29c91c5ad5f30d221fee3aae
SHA256

98bf6a6bf1961f4028b00ae5a8f5c75b9f5744d3e6b5308000ea1bcbd196f0c3
SHA512

d8ac55411b7fb158753738a7115d436c4d63a21f5f1d4bdfcf604c79ede37a3543a828b0a9bc9ead9fe34d1493b9609818e1a2547e13677d1f431bc914843359
SSDEEP

768:PkaFsWnbjvmLjcG6yXm7zdq4qZSxn3fSf53IfS/nloDXy/LPMgQok:pTnbjxGjmNq4qHFlflmXaogQok

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8a99db68f5d4092a3a6fa9492dd57e2b.bin

Files

8a99db68f5d4092a3a6fa9492dd57e2b.bin
.exe windows:4 windows x86 arch:x86

593146899028df143526f092e4d7ef8a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetEndOfFile
AllocConsole
GetOEMCP
lstrcatA
SwitchToThread
GetCurrentThreadId
FindResourceExA
GetModuleFileNameA
GetModuleHandleW
TlsFree
GetThreadLocale
TlsSetValue
IsDBCSLeadByte
VirtualAlloc
GetFileAttributesW
lstrcpyA
GetCommandLineA
DeleteFileA
GetUserDefaultLCID
TlsGetValue
GetSystemDefaultLCID

user32

GetFocus
ShowWindow
ReleaseDC
GetWindow
ValidateRect
GetWindowTextLengthA
IsWindowVisible
GetWindowLongA
InvalidateRect
GetForegroundWindow
GetWindowTextA
IsIconic
GetClassInfoExA
CloseWindow
RegisterClassA
ReleaseDC
GetActiveWindow
GetDC
GetSystemMetrics

version

GetFileVersionInfoSizeA
VerLanguageNameA
VerFindFileA
VerQueryValueA
VerInstallFileA
GetFileVersionInfoA

msctf

DllGetClassObject

Sections

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ