8f6fa4177b3a6c76b5fd131dc1f5acee9a4eef1c1bda612926d07904c01b55a5 | Triage

Sharing

General

Target

8f6fa4177b3a6c76b5fd131dc1f5acee9a4eef1c1bda612926d07904c01b55a5
Size

120KB
MD5

f52344eeebbdfe08e1631528ed56b36e
SHA1

1bae195695496781e8ac68c08ae686800187b86a
SHA256

8f6fa4177b3a6c76b5fd131dc1f5acee9a4eef1c1bda612926d07904c01b55a5
SHA512

2ce6b7f84ba31b51b9003bf8c9514a552d13b839ac0d5ad93a3f4f57abd93a12ac7bbb81455d395bc4bcd87de68f631fe892c0a789c12e05dc7962012f92dfd8
SSDEEP

1536:wOy253ZCGu9qkg06vJVPGjhuW4K/ajgfBzZ6pezKw4ZEkmaXZrM2bPP2L/loEAOt:1y9+kk66pjOzZ6pezydbprM27XEAO9K

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8f6fa4177b3a6c76b5fd131dc1f5acee9a4eef1c1bda612926d07904c01b55a5

Files

8f6fa4177b3a6c76b5fd131dc1f5acee9a4eef1c1bda612926d07904c01b55a5
.dll windows:4 windows x86 arch:x86

0f44bf2b3b0b8d5ecae5689ff1d0e90d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CreateProcessA
CloseHandle
WriteFile
CreateFileA
GetTickCount
lstrcpyA
lstrcatA
lstrlenA
GetTempPathA
SetErrorMode

user32

wsprintfA

Sections

.text
Size: 119KB - Virtual size: 118KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 376B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ