8ef961ae49f1cdccc0504bb7283c0aa3

General

Target

8ef961ae49f1cdccc0504bb7283c0aa3
Size

44KB
MD5

8ef961ae49f1cdccc0504bb7283c0aa3
SHA1

20792d0557b4d0e209927c900f5afb3a297808cb
SHA256

98effb6a332e4f12627a7b1db08ceefa4ccbbc51bba80023e301af32cb8afdf1
SHA512

8db745bc1232b91312fb33bdf9ac1017610e47672d1df7178d13cf24412216f4a4f18859b2175483335faf88c343f5525ce574898113628fdbfc1b08c4eb30fb
SSDEEP

768:VVtytSKVu1uf2ltA1XYcYmxD3bwk2w//wiHRKyx1:Vqf9f2lW1XOmdMk1Px1

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8ef961ae49f1cdccc0504bb7283c0aa3

Files

8ef961ae49f1cdccc0504bb7283c0aa3
.exe windows:4 windows x86 arch:x86

d843f7a82b3ee0094d8e853eb632c3c6

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FoldStringA
VirtualProtect
WritePrivateProfileStringW
SetUnhandledExceptionFilter
CreateDirectoryExW
SetFileAttributesW
SetSystemTime
CreateFileA
GetLastError
EnumResourceNamesW
InitializeCriticalSection
GlobalSize
ReadConsoleA
lstrcat
TransmitCommChar
EnumDateFormatsA
FlushFileBuffers
CreateThread
SetFileTime
FreeLibrary
DeleteTimerQueueTimer
FindFirstFileW

user32

DestroyMenu
DdePostAdvise
GetClipboardOwner
ShowStartGlass
DrawTextW
SetScrollPos
ChildWindowFromPoint
GetClassNameW
DdeGetLastError
CreateIconFromResourceEx
CharToOemA
UnlockWindowStation
MapVirtualKeyExA
CallMsgFilterW
CreateDialogIndirectParamW

gdi32

GetEnhMetaFileHeader
SetBkMode
SetTextCharacterExtra
GetMiterLimit
GetTextMetricsA
SwapBuffers
GetMetaFileBitsEx
FlattenPath
GetRgnBox
SetDCPenColor
GetAspectRatioFilterEx
EnumFontFamiliesW
EngPaint
SetROP2
PaintRgn
PolyTextOutA
GetCharWidth32A
GetTextExtentExPointA
SetICMProfileA

comdlg32

GetSaveFileNameW
FindTextW
GetFileTitleW
ChooseColorA
PrintDlgExW
GetOpenFileNameW
ReplaceTextA
PrintDlgA
PageSetupDlgA
CommDlgExtendedError
dwLBSubclass
ChooseFontA
Ssync_ANSI_UNICODE_Struct_For_WOW

Sections

.text
Size: 4KB - Virtual size: 40KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 37KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

d843f7a82b3ee0094d8e853eb632c3c6

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

Sections

.text Size: 4KB - Virtual size: 40KB

.data Size: 37KB - Virtual size: 40KB

.idata Size: 2KB - Virtual size: 4KB

.text
Size: 4KB - Virtual size: 40KB

.data
Size: 37KB - Virtual size: 40KB

.idata
Size: 2KB - Virtual size: 4KB