e8cd8737e0285ddea0e60385ce3568ca86c4fcda9732a5f6b20711002e722d86 | Triage

Sharing

General

Target

e8cd8737e0285ddea0e60385ce3568ca86c4fcda9732a5f6b20711002e722d86
Size

108KB
MD5

68806a8da5b71687393bf89197acda02
SHA1

be46472a904cc0f64bca05b6f782c59ce656e15e
SHA256

e8cd8737e0285ddea0e60385ce3568ca86c4fcda9732a5f6b20711002e722d86
SHA512

408670a8ab12217b6ec7d7a86009a0dd87f9df60421f9801da88421c2f0eb88e736138013e752b1c08e80483b5ee70aa67addbc5d6228dfdc4eff2273ef34734
SSDEEP

1536:azsPbfI7xdwMOO7al0ZCT7oYbg+Nk8DPiVIAdHLGudhYqUs3KmbRwwaU6q:ZbfI7fE0Za7HbgyklFLVdhVUTwaU6

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
e8cd8737e0285ddea0e60385ce3568ca86c4fcda9732a5f6b20711002e722d86

Files

e8cd8737e0285ddea0e60385ce3568ca86c4fcda9732a5f6b20711002e722d86
.exe windows:4 windows x86 arch:x86

1f9ffbf9539e06b32bb4ec33f85c086d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

CharNextA
GetDC
GetParent
GetDesktopWindow
GetSystemMetrics
TranslateMessage

gdi32

CreateCompatibleDC
GetDeviceCaps
DeleteDC
GetClipBox
DeleteObject
SelectObject
CreatePalette
GetStockObject
SetMapMode
GetPixel
CreateFontIndirectA
SetTextAlign
SelectPalette
SaveDC
SetStretchBltMode
RectVisible
GetTextMetricsA
GetObjectA
CreateSolidBrush
RestoreDC
SetTextColor
LineTo

kernel32

GetCommandLineA
lstrcmpiW
GetModuleHandleA
RemoveDirectoryA
CopyFileA
GetWindowsDirectoryA
VirtualAlloc
QueryPerformanceCounter
lstrcmpA
lstrlenW
DeleteFileA
VirtualFree
GlobalFindAtomA
RemoveDirectoryW
FindClose
GetSystemTime
lstrlenA

glu32

gluNurbsCallback

Sections

.text
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 51KB - Virtual size: 51KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 27KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ