8df8ccadf77f2b0911d332988978d267 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

8df8ccadf77f2b0911d332988978d267
Size

79KB
MD5

8df8ccadf77f2b0911d332988978d267
SHA1

32e03e04c63c89044a8a15bd89067832450ba1df
SHA256

dc7139c8a3cee20b70cb8156196c73e907843ed34d985c4dd86a37e4342b4a71
SHA512

f6366e47fcc024cd0bbb632e14133682c698be9419c09e0cc0c715d3f651393b933ba9dc08a7b817d3bde638f2b8f404e84a8a5158c7aef9f94be53e1d2b4ebf
SSDEEP

1536:cuZojco+ytgc38NElbr8q7/aCYGYAzzA7hSxGHXpwFsfZ8DnOkHF:cuZo4rBElrl7/aZgzzAzHxB8DOW

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8df8ccadf77f2b0911d332988978d267

Files

8df8ccadf77f2b0911d332988978d267
.exe windows:4 windows x86 arch:x86

294d37fde735d12ed9413c7cd4a01bc7

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

InterlockedExchange
GetConsoleDisplayMode
GetModuleHandleA
ResumeThread
HeapReAlloc
LoadLibraryExA
VirtualProtect
GetSystemTime
GetAtomNameA
GetCommandLineA
WaitForSingleObject
GetConsoleCP
HeapCreate
GetUserDefaultLangID
GlobalSize
WaitForSingleObject
lstrlenA
LocalLock
GetVersion
GetACP
SetLastError

user32

CreateIcon
FrameRect
GetWindow
GetDC
GetFocus
GetClassNameA
ShowWindow
GetTitleBarInfo
GetParent
ReleaseDC
GetCursorPos
FillRect
AnyPopup
BeginPaint
EndPaint
DragDetect
SetForegroundWindow
DrawTextA
wsprintfA

ntshrui

DllGetClassObject
DllCanUnloadNow
SetFolderPermissionsForSharing
GetNetResourceFromLocalPathA
GetLocalPathFromNetResourceA

msacm32

acmFilterEnumA

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 39KB - Virtual size: 40KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

axteszb
Size: - Virtual size: 4KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE