8ee139af3115f3f0b0c9d7fc6441ab3a | Triage

Sharing

Copy URL Twitter E-mail

General

Target

8ee139af3115f3f0b0c9d7fc6441ab3a
Size

26KB
MD5

8ee139af3115f3f0b0c9d7fc6441ab3a
SHA1

2484651e32035586395411320a3e1636738e4364
SHA256

3c7c93bbb63f0164387fb441e251eefe450476914a6277f572deb77b20be413e
SHA512

e430740eb6f08a23e0dae1e49be979df6a2c82b7a7675e7338089d044d7687cf8f5c1cf9cb67ee669e2d545eb39961b130ad2682cc8da7757e14acd94514e94e
SSDEEP

384:SKqNu47UTw6AlT+WymHDRgD51a3nMwMRQu:SKq77UTyiWyEglI7uQ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8ee139af3115f3f0b0c9d7fc6441ab3a

Files

8ee139af3115f3f0b0c9d7fc6441ab3a
.exe windows:4 windows x86 arch:x86

86155f1d5ec97912a69614e588b9326b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
LoadLibraryA
CloseHandle
GetModuleHandleA
GlobalFree
GetVersionExA
LocalAlloc
Sleep
GetCommandLineA
lstrcpyA
lstrcatA
GetTickCount
GetStartupInfoA
GlobalAlloc
GetStdHandle
FreeLibrary
GetFileSize
GetLastError

msvcrt

rand
__p__commode
__set_app_type
_acmdln
_initterm
_adjust_fdiv
_except_handler3
wcslen
_controlfp

Sections

.text
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 1004B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 14KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ