8c6d992224a74c34f60d38b2113ac85f720c0b26de5f444500732390abb989a4 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

8c6d992224a74c34f60d38b2113ac85f720c0b26de5f444500732390abb989a4
Size

37KB
MD5

f584a05004195930b2e4487bd5014418
SHA1

274ccbc97111424ea0a735e8306b085465347aa7
SHA256

8c6d992224a74c34f60d38b2113ac85f720c0b26de5f444500732390abb989a4
SHA512

8f60d714ad153eefc7e412f23ea4e58754c77c3197f346a6ace2795f8d7aa43851a309a83b2fee4f72bc1676bd0779e57dadd380c4883b818a45c464744831b3
SSDEEP

768:75ylOZ1lw8vwN34INyjURYhOkOtKn1brOs5hO9QTNPK:75JZRYFaG0VK

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8c6d992224a74c34f60d38b2113ac85f720c0b26de5f444500732390abb989a4

Files

8c6d992224a74c34f60d38b2113ac85f720c0b26de5f444500732390abb989a4
.exe windows:4 windows x86 arch:x86

edad01f06f3862066717a98cd86e4b97

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

RtlZeroMemory
lstrlenA
lstrcatA
GetVolumeInformationA
GetWindowsDirectoryA
ExitProcess
GetModuleHandleA

advapi32

RegSetValueExA
RegCloseKey
RegCreateKeyExA

user32

EndDialog
SendMessageA
LoadIconA
DialogBoxParamA
wsprintfA
SetDlgItemTextA
CharLowerBuffA

comctl32

InitCommonControls

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 504B - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 31KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ