b8357306e65f6bef0764734bda159979 | Triage

Sharing

General

Target

b8357306e65f6bef0764734bda159979
Size

311KB
MD5

b8357306e65f6bef0764734bda159979
SHA1

d0a238742c461b8b4f71e95155791afb46d46e24
SHA256

f001e664a5c5ca97db0bbc51f0f0edcbe808e47375ea26ea777d93059a4f3d37
SHA512

58d95ba88bb1496dc05a7cb659ae9ae596ace6014a801f9bc8669cc207947ee3a264659336757ad9a8a017cac79e6342a04b26f82f01ccb06bdf2b88f1fba049
SSDEEP

6144:kVHX/Is1bdRbDgjpdwuRWORseaIsyQBjbfJsXZtkv2:kNws1bdRbEbWO/Ga3kv

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b8357306e65f6bef0764734bda159979

Files

b8357306e65f6bef0764734bda159979
.exe windows:4 windows x86 arch:x86

f2ba796a06a5041795ed44d899058d69

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
CreateThread
EnterCriticalSection
FreeLibrary
GetComputerNameA
GetWindowsDirectoryA
GlobalAlloc
LeaveCriticalSection
LoadLibraryA
MapViewOfFile
SetCurrentDirectoryA
SetErrorMode
Sleep
TerminateProcess
WaitForSingleObject
WriteConsoleA
lstrcmpiA
lstrlenA

user32

DrawEdge
EnumChildWindows
GetDC
GetShellWindow
GetSystemMenu
GetWindowLongA
IsWindowEnabled
MessageBeep
MessageBoxW
SetScrollInfo

Sections

.text
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 792B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 297KB - Virtual size: 300KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ