b8725542ebb3e5811577895a147878e8 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b8725542ebb3e5811577895a147878e8
Size

187KB
MD5

b8725542ebb3e5811577895a147878e8
SHA1

4a2a8d778b96cd75186854f64e8703353673bbd3
SHA256

27ec3e9e02a289cf2d2e83057f9a4f1113da97acb1ed1bdb62e67bf72024244c
SHA512

2bf89cdd71b2101eba24c1209855d13ca71b669c52ea7a708b9857f0195e418d141b4754475622a959907a58249f629800db4309a0157d3bccd723b89a08f076
SSDEEP

3072:etL+n7XpbFYcTTQGLTMz8TvPiQ5geTzA7RB1sJMOvbOIgChFreX+hLOvVbYrD:ep+755YKTdLT5v6Q5gBtB1YvaCh9eXst

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b8725542ebb3e5811577895a147878e8

Files

b8725542ebb3e5811577895a147878e8
.exe windows:5 windows x86 arch:x86

43c51ee68aaefe75a546b38ddaf5cd8c

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

E:\MyNewFolder\IsTest\Document\Work.exe

Imports

msvcrt

__set_app_type
wcscat
_controlfp
isxdigit
__p__commode
__p__fmode
gmtime
_initterm
fputs
_amsg_exit
_ismbblead
iswspace
exit
_exit
_XcptFilter
iswprint
_cexit
__getmainargs
__setusermatherr

kernel32

GetExitCodeThread
EscapeCommFunction
EnumResourceNamesW
SetFileAttributesA
SetupComm
LocalSize
GetNumberFormatW
CreateFileA
SystemTimeToFileTime
SetFileTime
FormatMessageA
IsBadReadPtr
TlsGetValue

Exports

Exports

_RegisterDeviceNotificationARegisterDeviceNotificationA@0
_RegisterDeviceNotification_A@0

Sections

.text
Size: 153KB - Virtual size: 153KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 26KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ