b8d748d2b77b134b71ffca23055871c0

Sharing

Copy URL

Twitter E-mail

General

Target

b8d748d2b77b134b71ffca23055871c0
Size

217KB
MD5

b8d748d2b77b134b71ffca23055871c0
SHA1

c2feaa03f2f212d3a2ee9d7d882dd9ce8d5df3fa
SHA256

6d6366b05cc68b224d2a13c8841aa5f3b7356e1f6b8d8d28eea2d9d4bab40357
SHA512

fe95144f8550591b1ea5db1b83e3cedf376bd3535324a2fe887f2a2419b26cfeac181fd23a4ab3213a91d1db7ca84c300deadda1baa5c6fea9a055c292bfbb5a
SSDEEP

6144:upU0Myvcl/5+oEr9gYMaTz1++E7xMrSJ:uqXykTD2gYnIHCq

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b8d748d2b77b134b71ffca23055871c0

Files

b8d748d2b77b134b71ffca23055871c0
.exe windows:4 windows x86 arch:x86

023b2370560527bc48875203da14493d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

IsBadHugeReadPtr
LocalReAlloc
GetCurrentThread
GetStartupInfoA
LoadLibraryA
GetCommandLineW
GetCurrentProcessId
VirtualAllocEx
GetStringTypeW
GetCurrentProcess
GetACP
LocalAlloc
ExitProcess
GetProcessHeap
DeleteFileA
MoveFileA
GetLocalTime
VirtualQuery
LocalFree
GetModuleHandleA
GetFileType
SetHandleCount

user32

GetCapture
SetTimer
IsMenu
BeginPaint
EndPaint
SetCapture
DrawIcon
TranslateMessage
GetScrollPos
CharUpperBuffA
GetKeyboardLayout
GetDesktopWindow
IsWindowVisible
PeekMessageA
GetClassInfoA
GetWindowRect
GetWindowTextLengthA
GetKeyState
GetKeyboardLayoutList
CharNextA
CreateIcon
UnregisterClassA
GetWindowTextA
GetSysColorBrush
CloseClipboard
DestroyMenu
RegisterClassA
DefFrameProcA
GetMenu
IsDlgButtonChecked
MessageBeep
GetKeyboardType
EnumChildWindows
GetMenuItemCount
GetMessagePos
ActivateKeyboardLayout
OemToCharA
GetScrollInfo
EmptyClipboard
SetFocus
GetMenuStringA
TrackPopupMenu
EqualRect
SendMessageW
SetMenuItemInfoA
DrawMenuBar
SetWindowLongW
SetClassLongA
GetWindowThreadProcessId
GetMenuItemID
ChildWindowFromPoint
IsWindow
SetScrollRange
PostMessageA
SetMenu
SetWindowLongA
DestroyIcon
FrameRect
ScreenToClient
GetSystemMenu
SetScrollPos

comdlg32

GetOpenFileNameA
FindTextA
ChooseColorA
GetSaveFileNameA
GetFileTitleA

Exports

Exports

7GswNlsu51tgt
_RhDiqT5sGePU
2NhNKzhqO
_Z2wc7JX1Lo5x6C
_HroUx3szaRL
dL0uIeXdWZ0@20
xSGunqbzF5xO
_SP3pwIbL6Emws7@20
MzREpGlKohYNy@8
mNMWe9ZtIl
_sA5rSJ
_Gz4AYdapFKp

Sections

.text
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: 186KB - Virtual size: 185KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

023b2370560527bc48875203da14493d

Headers

File Characteristics

Imports

kernel32

user32

comdlg32

Exports

Exports

Sections

.text Size: 9KB - Virtual size: 8KB

.data Size: 12KB - Virtual size: 11KB

.bss Size: 186KB - Virtual size: 185KB

.idata Size: 4KB - Virtual size: 4KB

.rsrc Size: 4KB - Virtual size: 3KB

.text
Size: 9KB - Virtual size: 8KB

.data
Size: 12KB - Virtual size: 11KB

.bss
Size: 186KB - Virtual size: 185KB

.idata
Size: 4KB - Virtual size: 4KB

.rsrc
Size: 4KB - Virtual size: 3KB