8f28d13c3ef806664ca602589226daa5

General

Target

8f28d13c3ef806664ca602589226daa5
Size

150KB
MD5

8f28d13c3ef806664ca602589226daa5
SHA1

6728f615477b8266ab952c75efd22c2cee3f6c0e
SHA256

b0ec1c7d122a89d3a63908a592b62526f4fcf93672b57550ace10bdd0ac870fe
SHA512

be5d4a2b32d93af5a791a8bb5dad555bdadd9c60a43bb69d45982182521a0053b80f8b4f6f18aae95758edf40a73b777eda3a18451587c3cd405ab2ad89119e0
SSDEEP

3072:79ELyQJ20T0hGgd5xD3Ls2kdMdV6LA4Rx6fBApS57i1ap/:79MJLTQD7sfdMdQA4R+Af1

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8f28d13c3ef806664ca602589226daa5

Files

8f28d13c3ef806664ca602589226daa5
.exe windows:4 windows x86 arch:x86

8bd7cc0aca31e3f9116e40c04eba69f4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

shell32

SHGetFolderPathA
SHGetDesktopFolder
SHGetFileInfoA
SHFileOperationA
SHGetSpecialFolderLocation

advapi32

GetUserNameA

user32

TrackPopupMenu
ShowWindow
SystemParametersInfoA
CharNextA
GetSysColorBrush
TranslateMDISysAccel
CreateMenu
GetMenu
TranslateMessage
UnhookWindowsHookEx
IsChild

kernel32

GetDiskFreeSpaceA
VirtualQuery
GetLastError
InitializeCriticalSection
GetCommandLineW
LoadLibraryExA
HeapAlloc
VirtualAllocEx
CloseHandle
LockResource
SetHandleCount
GetStringTypeA
GetCurrentProcessId
ExitProcess
LoadLibraryA
GlobalAlloc
GetModuleHandleW
ReadFile
ExitThread
WriteFile
GetCommandLineA
GetDateFormatA
LocalReAlloc
GetVersion
FindResourceA

Exports

Exports

_mJuXJRDokSp@20
_hTpb5Bg6X9@20
rTG8AZIp2Ikr

Sections

.text
Size: 27KB - Virtual size: 27KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 10KB - Virtual size: 90KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 100KB - Virtual size: 100KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.mdata
Size: 512B - Virtual size: 128B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8bd7cc0aca31e3f9116e40c04eba69f4

Headers

File Characteristics

Imports

shell32

advapi32

user32

kernel32

Exports

Exports

Sections

.text Size: 27KB - Virtual size: 27KB

.rdata Size: 10KB - Virtual size: 90KB

.data Size: 100KB - Virtual size: 100KB

.idata Size: 1KB - Virtual size: 1KB

.mdata Size: 512B - Virtual size: 128B

.rsrc Size: 8KB - Virtual size: 8KB

.text
Size: 27KB - Virtual size: 27KB

.rdata
Size: 10KB - Virtual size: 90KB

.data
Size: 100KB - Virtual size: 100KB

.idata
Size: 1KB - Virtual size: 1KB

.mdata
Size: 512B - Virtual size: 128B

.rsrc
Size: 8KB - Virtual size: 8KB