b8101cf694f63c5b01e69d91ce3458e0

General

Target

b8101cf694f63c5b01e69d91ce3458e0
Size

142KB
MD5

b8101cf694f63c5b01e69d91ce3458e0
SHA1

1f889b92f7cdb2d268c2f242af40fbecf05226e7
SHA256

b609680f2065e8c04dfb4b892e09efa2246a11199bed14234ec8f974632e3597
SHA512

dc18074e1ecdb99b7850a1e176b03d509b201d99d779cd280049593118c1c6071db56e6bd0eb03144c63fccfddce97fb583fca858a6ca3d69b592a6b42023719
SSDEEP

3072:gGXza9FuuiYdyc1gBa4BM6GvNbTclN5SCaDx4cSL:dDa9FuODqGvNPcv7ISL

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b8101cf694f63c5b01e69d91ce3458e0

Files

b8101cf694f63c5b01e69d91ce3458e0
.exe windows:4 windows x86 arch:x86

0bae310c85e89e4ead0b6b1c9ec529a8

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetStringTypeA
HeapAlloc
GetFileType
GlobalFree
GetFileSize
GetOEMCP
GetCurrentProcessId
ExitProcess
GetCommandLineA
HeapFree
lstrcmpiA
GetModuleHandleA
lstrcatA
GetModuleFileNameA
GetCurrentProcess
FreeLibrary
GetCurrentThread
lstrcpynA
GetLastError
GlobalAlloc
DeleteFileA
GetCurrentThread
DeleteFileA
GetCurrentThreadId
DeleteFileA
GetOEMCP
DeleteFileA
GetCommandLineA
DeleteFileA
lstrcpynA
DeleteFileA
lstrcmpiA
DeleteFileA
GetModuleFileNameA
DeleteFileA
GetLocalTime
DeleteFileA
GetFileType
DeleteFileA
ExitProcess
GlobalFree
lstrcpynA
lstrcpyA
GetConsoleOutputCP
GetFileSize
DeleteFileA
GetCurrentThread
GetCurrentProcessId
lstrcatA
GlobalAlloc
GetCurrentProcess
GetFileType
GetCurrentThreadId
Sleep
FreeLibrary
GetFileAttributesA

user32

GetWindowTextA
EndDialog
IsWindow
CreateIcon
AlignRects
CalcMenuBar
GetFocus
DrawTextA
CloseWindow
DrawIconEx
GetDC
GetMenu
LoadMenuA
IsMenu
LoadCursorA
AppendMenuW
DrawTextW
DialogBoxParamW
GetCursor
GetDlgItem
DialogBoxParamA
DrawIcon
EndDialog
InsertMenuA
CopyIcon
AlignRects
DrawTextA
GetWindowTextLengthA
IsMenu
DialogBoxParamW
GetFocus
GetWindowTextA
GetMenu
CreateIcon
CloseWindow
CopyImage
AppendMenuW
BlockInput
GetDC
AppendMenuA

Sections

.teat
Size: 18KB - Virtual size: 18KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.radta
Size: 109KB - Virtual size: 109KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.eddda
Size: 4KB - Virtual size: 109KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bas
Size: - Virtual size: 565B

IMAGE_SCN_MEM_READ

.rdac
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0bae310c85e89e4ead0b6b1c9ec529a8

Headers

File Characteristics

Imports

kernel32

user32

Sections

.teat Size: 18KB - Virtual size: 18KB

.radta Size: 109KB - Virtual size: 109KB

.eddda Size: 4KB - Virtual size: 109KB

.bas Size: - Virtual size: 565B

.rdac Size: 6KB - Virtual size: 5KB

.teat
Size: 18KB - Virtual size: 18KB

.radta
Size: 109KB - Virtual size: 109KB

.eddda
Size: 4KB - Virtual size: 109KB

.bas
Size: - Virtual size: 565B

.rdac
Size: 6KB - Virtual size: 5KB