8ba25be8ed75b14bec25457957dde7e18996c92079b41a8a5a4ea32f3eb5f548 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

8ba25be8ed75b14bec25457957dde7e18996c92079b41a8a5a4ea32f3eb5f548
Size

54KB
MD5

935d7817919c3140cf3644db1dfe9503
SHA1

5ee5b2987a46f9b6fa6c7f66a7bd3ee4cd24d5da
SHA256

8ba25be8ed75b14bec25457957dde7e18996c92079b41a8a5a4ea32f3eb5f548
SHA512

d72c80e6ab295ac3c9e7c8f0a73263c7591f4a96b60bd8dbb9d1711c6c3194b3a606736dfe1cbaf0c95bf338f8b8ead8afa19b7083f206cc88f4aaad8cb576c5
SSDEEP

768:zTAiYUVaQDKVRRZgqq6UFFAKcls0ceVA1JYN2BDMSdzl7:HAqamKVO6s0hVA1JH1MSdJ7

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8ba25be8ed75b14bec25457957dde7e18996c92079b41a8a5a4ea32f3eb5f548

Files

8ba25be8ed75b14bec25457957dde7e18996c92079b41a8a5a4ea32f3eb5f548
.exe windows:5 windows x86 arch:x86

b54757880e34d193f6c36b5f50a2be11

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

cabinet

ord13

mscms

CreateColorTransformW
CreateProfileFromLogColorSpaceW
CreateDeviceLinkProfile

gdi32

SetWindowOrgEx
GetWindowOrgEx
CreateDCA
CheckColorsInGamut

kernel32

ExitProcess
GetConsoleCursorInfo
GetProcAddress
GetModuleHandleW

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ