8fd3c5f222a71265cd04729b30a80b8e | Triage

Sharing

General

Target

8fd3c5f222a71265cd04729b30a80b8e
Size

134KB
MD5

8fd3c5f222a71265cd04729b30a80b8e
SHA1

61529e33bf1a71cec31b8ab7eebb28f296dcafae
SHA256

77e914f69dccbdb42da47686ba36c8cc4f2413f9dcb6cd8a994bef7bea4443d9
SHA512

27252e10ecff98b4750cf268cc1ade01fa7b314ce342fbd5eb99e3b69ad0f081cef367340aa066b33d16c88b4dc652293794250b653c503e0b8f22b8e31d2940
SSDEEP

3072:EbmEFzK93majRQVwfIHaoX3NI2JLJdKwZkyuHWzz:2JW3RlAHamZJd1Zky9

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8fd3c5f222a71265cd04729b30a80b8e

Files

8fd3c5f222a71265cd04729b30a80b8e
.exe windows:4 windows x86 arch:x86

6d3febaf00750226ccd2fcbc9faf911b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ExitProcess
FileTimeToSystemTime
FindClose
GetModuleFileNameA
GetModuleHandleA
GetProcAddress
GlobalReAlloc
IsDebuggerPresent
LoadLibraryA
LoadResource
SetLastError
VirtualAlloc
VirtualFree

user32

DefWindowProcA
DispatchMessageA
EndDialog
GetActiveWindow
GetClientRect
GetKeyState
GetSubMenu
IsIconic
IsWindowEnabled
SetWindowLongA
wsprintfA

gdi32

BitBlt
CreateBrushIndirect
CreatePenIndirect
Escape
GetDeviceCaps
RealizePalette
RectVisible
Rectangle
SetBkColor
SetWinMetaFileBits

shell32

ExtractIconExW
ExtractIconW
SHAppBarMessage
SHGetPathFromIDListA
ShellExecuteEx

Sections

.text
Size: 40KB - Virtual size: 40KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 71KB - Virtual size: 70KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 20KB - Virtual size: 136KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ