b8d8354f0535590e1c94d7d5091f10eb

Sharing

Copy URL Twitter E-mail

General

Target

b8d8354f0535590e1c94d7d5091f10eb
Size

84KB
MD5

b8d8354f0535590e1c94d7d5091f10eb
SHA1

0265c32b69b9406bf2bee5dee57dd721db47165f
SHA256

50ad79e689cf60cc581776fd0af53b4203df314a2d28e0d4b7c1221e8fce3313
SHA512

88d73284d11faf54cedf3448796abc2d7bb00269fc222ea1192537ba4c1ebf945c89ff865054847c696b314085c1e1da4fafc208a3d728ee9fddbf4f588ebb53
SSDEEP

1536:kyfAr6yhjv8/nYOvTkLgAx9TBLDB0l2cfIupjL8y01oJ3WT4mF:D4r6yhjvKYGosa708cftvZ0KJ3WM8

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b8d8354f0535590e1c94d7d5091f10eb

Files

b8d8354f0535590e1c94d7d5091f10eb
.exe windows:4 windows x86 arch:x86

285163842426ee3075aaa3e81ba1220a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

shell32

SHGetDiskFreeSpaceA
SHGetFileInfoA

user32

InvalidateRect
GetMenuStringA
GetWindowLongA
PostMessageA
GetMenu
EmptyClipboard
RedrawWindow
GetWindow
ReleaseDC
SetFocus
FillRect
GetActiveWindow
LoadBitmapA
RegisterClassA
GetKeyboardLayoutList
CreatePopupMenu
InsertMenuItemA
EnumChildWindows
CallWindowProcA
GetCursor
GetMenuItemCount
GetClassNameA
GetClassLongA
GetParent
IsWindowEnabled
GetKeyboardLayout
CharLowerA
GetWindowLongW
PostQuitMessage
IsWindowVisible
SendMessageA
CharUpperBuffA
IsRectEmpty
GetSystemMenu
IsDialogMessageW
GetPropA
GetDC
CharNextA
PeekMessageW
CharToOemA
SetMenu
LoadCursorA
GetSubMenu
CharLowerBuffA
SetRect
EnableWindow
InflateRect
TrackPopupMenu
RemovePropA
GetWindowThreadProcessId
SetPropA
DeleteMenu
SetWindowsHookExA
GetMenuItemInfoA
CreateIcon
GetKeyboardState
RegisterWindowMessageA
GetLastActivePopup
GetWindowPlacement
SetWindowPlacement
IsDlgButtonChecked
DrawMenuBar

oleaut32

VariantCopyInd
SysStringLen
SysReAllocStringLen
SafeArrayUnaccessData
SysAllocStringLen
SysFreeString
SafeArrayPtrOfIndex
GetErrorInfo

kernel32

GetDateFormatA
GetStdHandle
GetCommandLineW
VirtualAllocEx
HeapAlloc
FreeLibrary
GetStringTypeW
GetLastError
GetSystemDefaultLangID
GetFullPathNameA
SetThreadLocale
GetTempPathA
ExitProcess
FormatMessageA
VirtualAlloc
LoadLibraryA
DeleteFileA
IsBadHugeReadPtr
HeapFree
LoadLibraryExA
LockResource
GetStringTypeA
FindFirstFileA
WideCharToMultiByte
GetLocaleInfoA

Exports

Exports

OZ1IWQoQ@4
_UukuIQvOoTFK
XSQzOa6d
_mSrU0ZnS3_J1mw
PtycInFi@8
_TPKuXsGm
_dYJvHM6ojYR_
_R96xx3mw7xJjrS@12
_5ejyN0@16
EaOg2sPK3T2
211MP@12

Sections

.text
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 11KB - Virtual size: 50KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 51KB - Virtual size: 50KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.abdata
Size: 512B - Virtual size: 335B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 512B - Virtual size: 300B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

285163842426ee3075aaa3e81ba1220a

Headers

File Characteristics

Imports

shell32

user32

oleaut32

kernel32

Exports

Exports

Sections

.text Size: 12KB - Virtual size: 11KB

.rdata Size: 11KB - Virtual size: 50KB

.data Size: 51KB - Virtual size: 50KB

.abdata Size: 512B - Virtual size: 335B

.edata Size: 512B - Virtual size: 300B

.rsrc Size: 8KB - Virtual size: 8KB

.text
Size: 12KB - Virtual size: 11KB

.rdata
Size: 11KB - Virtual size: 50KB

.data
Size: 51KB - Virtual size: 50KB

.abdata
Size: 512B - Virtual size: 335B

.edata
Size: 512B - Virtual size: 300B

.rsrc
Size: 8KB - Virtual size: 8KB