e8b280cba4e26967fcc643dda8f8d5e0N[.]exe

General

Target

e8b280cba4e26967fcc643dda8f8d5e0N.exe
Size

64KB
MD5

e8b280cba4e26967fcc643dda8f8d5e0
SHA1

2189dc5f65947de1bc81faaa1f52a40bcf9ac8bc
SHA256

89da8b9b03f83dcb76910eaaeab5da9361e45875a7ab845bbfdec1df634f06ad
SHA512

c5364cf9e72947eb2a950cd75ba2499afa6c288cb2242ba17a637205878c0f4a313ad696dcc86c507a835cea0ca9c9f1d95b56b2fbf1d8ef98dfdd0d698544ac
SSDEEP

768:aEz68BNn7L1hCcZSdKtzDq3Rm1vdz1zYWWVdCK6WYk95rqzgLa1:ayBRhtHhlwWWGyLa

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
e8b280cba4e26967fcc643dda8f8d5e0N.exe

Files

e8b280cba4e26967fcc643dda8f8d5e0N.exe
.exe windows:4 windows x86 arch:x86

676be8bc53da9b7ab2e165ceb3f50370

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLastError
WriteFile
SetFilePointer
ReadFile
CreateFileA
GetModuleFileNameA
GetWindowsDirectoryA
QueryPerformanceFrequency
FindFirstFileA
GetEnvironmentVariableA
SetPriorityClass
RemoveDirectoryA
GetVersionExA
WritePrivateProfileStringA
FindNextFileA
Sleep
GetTickCount
GetPrivateProfileStringA
FreeLibrary
GetCurrentProcess
GetProcAddress
lstrcat
LoadLibraryA
QueryPerformanceCounter
GetUserDefaultLangID
lstrcpy
GetPriorityClass
CloseHandle
GetEnvironmentStringsW
WideCharToMultiByte
HeapAlloc
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetVersion
ExitProcess
TerminateProcess
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
HeapFree
VirtualAlloc
GetCPInfo
GetACP
GetOEMCP
SetHandleCount
GetStdHandle
GetFileType
HeapDestroy
HeapCreate
VirtualFree
RtlUnwind

user32

MessageBoxA
wsprintfA

Sections

.text
Size: 35KB - Virtual size: 34KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 823B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 21KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

676be8bc53da9b7ab2e165ceb3f50370

Headers

File Characteristics

Imports

kernel32

user32

Sections

.text Size: 35KB - Virtual size: 34KB

.rdata Size: 1024B - Virtual size: 823B

.data Size: 21KB - Virtual size: 22KB

.idata Size: 1KB - Virtual size: 1KB

.text
Size: 35KB - Virtual size: 34KB

.rdata
Size: 1024B - Virtual size: 823B

.data
Size: 21KB - Virtual size: 22KB

.idata
Size: 1KB - Virtual size: 1KB