c8a45c0cd634ef8fa3ba9a0486e758dd | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c8a45c0cd634ef8fa3ba9a0486e758dd
Size

167KB
MD5

c8a45c0cd634ef8fa3ba9a0486e758dd
SHA1

6a1ac16a260e6262c8933be1bf0748959009b011
SHA256

c9b3eb57746b4f7ca8de5cca444de6e2bab9083dc9e95f883b752d2a9ccd755b
SHA512

799d52c8165f0ed650ad829d5d4fcfd179bac915abe6fb696734441fb53f18c5db81197dd29f26bbe169434e221f038e387fef2a8dd176a0c75ea56c36b4bc0b
SSDEEP

3072:pwgS4qo1+PWj5SsBjkQfWm0OMKif5zhTF2CXk6sv2X46TMUDN8e:HSG5tBw6V0VKq5hTF2UTs+IdUDN8e

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c8a45c0cd634ef8fa3ba9a0486e758dd

Files

c8a45c0cd634ef8fa3ba9a0486e758dd
.exe windows:4 windows x86 arch:x86

67b66bdd0407eddc032d42301d00f619

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetVersion
GetTickCount
CloseHandle
HeapReAlloc
GetCommandLineA
lstrlenA
SuspendThread
CompareFileTime
WaitForSingleObject
VirtualProtect
OpenMutexA
GetStdHandle
HeapCreate
GetSystemDefaultLangID
GlobalUnlock
WaitForMultipleObjects
GetAtomNameA
InterlockedExchange
GetModuleHandleA
GetConsoleCP
SetConsoleCP

user32

InsertMenuA
FindWindowA
CreateCursor
GetDlgItem
EnableScrollBar
DispatchMessageA
CopyImage
DragObject
MessageBoxA
GetCursorInfo
InvertRect
SetPropA
GetKeyState
GetKeyboardLayout
CreateIcon
DispatchMessageA
IsDialogMessage
DrawCaption
SetScrollInfo
CreateMenu
DestroyMenu
SetWindowPos
DialogBoxParamA

advapi32

RegQueryInfoKeyA
RegCloseKey
RegEnumKeyA
RegEnumValueA
RegCreateKeyExA

uxtheme

GetThemeColor

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 268KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 532KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ