93f36ba3c887680eb672e1197f1946b777e748685bbf792e066769beb5277629

Sharing

Copy URL

Twitter E-mail

General

Target

93f36ba3c887680eb672e1197f1946b777e748685bbf792e066769beb5277629
Size

61KB
MD5

b7464c70cdd05852e13039ba55fe6ba9
SHA1

b36278f7f855852ca4039a4909b91edc0d1f7503
SHA256

93f36ba3c887680eb672e1197f1946b777e748685bbf792e066769beb5277629
SHA512

322ae212d26a36b9c8de40f798401e312e8819919f7c33be016229076f08cef5b50919ba95b616475402c2053d0d1c8f189f74d1140340ba6b7c6b95747e8dac
SSDEEP

768:DPTTs0FJHwY7Fp7uG6tpDx/V2YbU8St4WVkFBmqqGs1KM/DZZaT0PVtqg:DrTDJHspDKYb1Z4kbqrz/Liqtq

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
93f36ba3c887680eb672e1197f1946b777e748685bbf792e066769beb5277629

Files

93f36ba3c887680eb672e1197f1946b777e748685bbf792e066769beb5277629
.exe windows x86

b5524f8dc433c0b623f83e83d3db8149

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetStringTypeW
GetStringTypeA
LCMapStringW
LCMapStringA
VirtualQuery
RtlUnwind
GetOEMCP
GetACP
GetCPInfo
InitializeCriticalSection
LoadLibraryA
HeapSize
Sleep
HeapReAlloc
VirtualAlloc
EnterCriticalSection
LeaveCriticalSection
GetCurrentProcess
TerminateProcess
GetSystemTimeAsFileTime
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
HeapCreate
HeapDestroy
TlsGetValue
TlsSetValue
TlsFree
InterlockedDecrement
GetCurrentThreadId
SetLastError
InterlockedIncrement
TlsAlloc
DeleteCriticalSection
GetFileType
SetHandleCount
GetEnvironmentStringsW
WideCharToMultiByte
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetModuleFileNameA
GetStdHandle
WriteFile
ExitProcess
RaiseException
GetLastError
GetStartupInfoA
GetProcessHeap
HeapAlloc
MultiByteToWideChar
OpenFile
GetLocaleInfoA
VirtualFree
GetVersionExA
HeapFree
GetCommandLineA
GetProcAddress
GetModuleHandleA
UnhandledExceptionFilter
SetUnhandledExceptionFilter

user32

EndPaint
DestroyWindow
GetWindowRect
LoadIconA
GetClientRect
SendMessageA
BeginPaint
SetWindowLongA
MessageBoxA
UnregisterClassA
GetWindowLongA
GetDlgItem
EndDialog
DefWindowProcA
GetDesktopWindow
IsWindow
CallWindowProcA
LoadCursorA
DialogBoxParamA
MoveWindow
CharLowerBuffA
wsprintfA

gdi32

GetStockObject

advapi32

RegEnumKeyA
RegOpenKeyA
RegOpenKeyExA
RegQueryValueExA
RegCloseKey

ole32

CoInitializeEx
CLSIDFromString
CoUninitialize
CoCreateInstance

Sections

.text
Size: 43KB - Virtual size: 43KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 508B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b5524f8dc433c0b623f83e83d3db8149

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

ole32

Sections

.text Size: 43KB - Virtual size: 43KB

.rdata Size: 11KB - Virtual size: 11KB

.data Size: 4KB - Virtual size: 6KB

.rsrc Size: 512B - Virtual size: 508B

.text
Size: 43KB - Virtual size: 43KB

.rdata
Size: 11KB - Virtual size: 11KB

.data
Size: 4KB - Virtual size: 6KB

.rsrc
Size: 512B - Virtual size: 508B