b8ca50721993200c32dab92a7f079b4a | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b8ca50721993200c32dab92a7f079b4a
Size

274KB
MD5

b8ca50721993200c32dab92a7f079b4a
SHA1

932e3b4f54d0bc1db5b033f0402a7c3930d8359c
SHA256

9cb47ea02cde5109a7162ee3998c39d8f93680161fe08a1d1ab21816b66796f1
SHA512

34249f8b0bd9ad8f8ac8c6e455cf7417b9b3a715ef992ae0c3bb7bba0714d1ad484733a9459a12d3e9ff2bf3e556688a3e6e7f64d8e879487f887b0bd948294a
SSDEEP

6144:ZCImY4NnXniDHizbP1mI12ejtRIJeDZkWZmW1LdGkkzxQ/Od/DV+A:ZJ/iXpzjUeoQDxbHGveOdB

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b8ca50721993200c32dab92a7f079b4a

Files

b8ca50721993200c32dab92a7f079b4a
.exe windows:4 windows x86 arch:x86

01da2a23a4e920586d6bcb18b728934b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

BaseInitAppcompatCacheSupport
GetSystemDirectoryW
lstrlenA
MulDiv
SetUnhandledExceptionFilter
GlobalUnlock
GlobalFree
LoadLibraryExW
EnumResourceTypesW
FreeLibrary
MultiByteToWideChar
GetLastError
CreateMailslotA
GetTickCount
RaiseException
LoadLibraryA
GetCurrentThread
FormatMessageA
IsDebuggerPresent
UnhandledExceptionFilter

gdi32

GetStockObject

oleacc

AccessibleChildren
CreateStdAccessibleProxyA

Sections

.text
Size: 121KB - Virtual size: 121KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 136KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 150KB - Virtual size: 150KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ