8ecbffd0f3c2066d34a422c396e521e9 | Triage

Sharing

General

Target

8ecbffd0f3c2066d34a422c396e521e9
Size

172KB
MD5

8ecbffd0f3c2066d34a422c396e521e9
SHA1

6dc476adc3b784397d5aeb159d1d5efc39a7b9ab
SHA256

e80a4fa530d1fbe9bce9079616313f27cc6ba93a785b63f68b725df2104fd54e
SHA512

052deb79e7e3f9a7cf4a16b92a94578f508899d30fb1b0c7a7c32236086a2754e36d6215d4c9c7603afdb5a79f461ada1c6de98aef5f6ff269e3545ef3718681
SSDEEP

3072:u/v728UhFHgZk+YRAqOkEA+A62Nc0qh66Vq0v60r5M7BZfYOWfrL/4:uq8AAZk+Y5Ocd+Rv60rk4RrT

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8ecbffd0f3c2066d34a422c396e521e9

Files

8ecbffd0f3c2066d34a422c396e521e9
.exe windows:4 windows x86 arch:x86

22061b043dea87b48e91cbab0a39d9fe

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
HeapAlloc
GetCalendarInfoA
GetStdHandle
GetVersionExA
LoadLibraryExW
FindResourceExA
CreateFileW
LockResource
SizeofResource
EnumResourceNamesA
LeaveCriticalSection
lstrcpynW
FindResourceA
HeapDestroy
LoadResource
GetSystemTime
FindFirstFileW
LoadLibraryW
HeapFree
SystemTimeToFileTime
WriteFile
GetModuleHandleA
GetProcessHeap
TerminateProcess

ole32

CoGetMalloc
CoTaskMemFree
ProgIDFromCLSID
StringFromCLSID

oleacc

LresultFromObject
CreateStdAccessibleObject

Sections

.text
Size: 97KB - Virtual size: 96KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 924B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: 72KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 248KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ