8ed7f9c42eba777df54b300160c5fae4

General

Target

8ed7f9c42eba777df54b300160c5fae4
Size

41KB
MD5

8ed7f9c42eba777df54b300160c5fae4
SHA1

70d95f5f2799feb34adc182813fb42fc50258844
SHA256

55598bf72a8280ef7888182697e6b454edabe890ba71c362e26560acf832a949
SHA512

d22670d1c4376e67e0bffdde26f6a1565965af06dd7bb3a8b23a06951e35cbd56c5e509d68b1068f6d38ddd8c2efc03b6a0fede3683e44f76e85231a5b92cd67
SSDEEP

384:SE4TaY4GD/kM1BrGFSC4vBATIHS5W8P0xVa+GmllInCEcyRpILQDoejOoZ4Wq8hg:SzmYvL1BFcIHV8Ya2B9/koCOobhxD

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8ed7f9c42eba777df54b300160c5fae4

Files

8ed7f9c42eba777df54b300160c5fae4
.exe windows:4 windows x86 arch:x86

0bd3d4bc7d552f761c0824a4e80b4ff9

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetForegroundWindow
GetWindowTextA

advapi32

OpenServiceA
StartServiceCtrlDispatcherA
RegisterServiceCtrlHandlerA
AdjustTokenPrivileges
LookupPrivilegeValueA
OpenProcessToken
ChangeServiceConfigA
StartServiceA
CreateServiceA
CloseServiceHandle
OpenSCManagerA
ControlService
DeleteService
RegCloseKey
RegQueryValueExA
RegOpenKeyExA
SetServiceStatus

kernel32

GetStringTypeW
LoadLibraryA
GetStringTypeA
CloseHandle
GetCurrentProcess
lstrcatA
GetSystemDirectoryA
GetLastError
Sleep
WinExec
WriteFile
CreateFileA
LockResource
LoadResource
SizeofResource
FindResourceA
Process32Next
Process32First
CreateToolhelp32Snapshot
OpenProcess
WaitForSingleObject
CreateRemoteThread
GlobalFree
GetShortPathNameA
GlobalAlloc
CreateThread
FreeLibrary
GetProcAddress
GetVersion
GetModuleFileNameA
SetFileTime
DeleteFileA
GetFileTime
ReadFile
GetFileSize
lstrcpyA
ReadProcessMemory
MoveFileA
ExitProcess
TerminateProcess
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
HeapAlloc
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
HeapDestroy
HeapCreate
VirtualFree
HeapFree
RtlUnwind
SetFilePointer
VirtualAlloc
HeapReAlloc
GetCPInfo
GetACP
GetOEMCP
SetStdHandle
FlushFileBuffers
MultiByteToWideChar
LCMapStringA
LCMapStringW

Sections

.text
Size: 35KB - Virtual size: 34KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0bd3d4bc7d552f761c0824a4e80b4ff9

Headers

File Characteristics

Imports

user32

advapi32

kernel32

Sections

.text Size: 35KB - Virtual size: 34KB

.rsrc Size: 5KB - Virtual size: 5KB

.text
Size: 35KB - Virtual size: 34KB

.rsrc
Size: 5KB - Virtual size: 5KB