8e40b1c78ccb32462294e7a8d25114d5 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

8e40b1c78ccb32462294e7a8d25114d5
Size

372KB
MD5

8e40b1c78ccb32462294e7a8d25114d5
SHA1

3dabdbe1749f1af98274fa4b5a2b32ab9306374b
SHA256

3e4eb86a482500e6383ac8ea6c65f41ff6af8c6ac12084717be2e772c8ae0987
SHA512

81e5edfe57479851ea4e8e49097a6c4ba41f168cba0dad4816a19277ccb638a8b6dd2a2d3c368de99801f5c611fc2a42fc4b25c823dd01de5b86833fe8f755e1
SSDEEP

6144:5oKjvjVcVAC2FXgEr8fE0ASg3/YQvRNMVlJi41fv4Dw:eWvjVkCrSvoZNyl5fwD

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8e40b1c78ccb32462294e7a8d25114d5

Files

8e40b1c78ccb32462294e7a8d25114d5
.exe windows:4 windows x86 arch:x86

60a6ad688e705b8203f45235db864d77

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetDriveTypeA
ReadFile
GlobalSize
GetLocalTime
LocalFree
CreateFileW
FreeConsole
ReleaseMutex
GetExitCodeProcess
CloseHandle
ExitThread
FindVolumeClose
GetComputerNameW
GetModuleHandleW
lstrlenA
GetTickCount
GetPrivateProfileIntW
GlobalFree
VirtualAlloc
SetEvent

user32

GetSysColor
GetKeyState
GetCursorInfo
GetMenu
GetClientRect
CallWindowProcA
SetFocus
CreateWindowExA
EndDialog
DrawStateW
DispatchMessageA
GetDlgItem
GetClassInfoA

clbcatq

ComPlusMigrate
DllGetClassObject
ComPlusMigrate
ComPlusMigrate
ComPlusMigrate

ntshrui

IsPathSharedA

Sections

.text
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 424KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 363KB - Virtual size: 362KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ