asupdchk[.]exe

General

Target

asupdchk.exe
Size

3.0MB
MD5

7af52ece3128abf10b621fcdd861560b
SHA1

b2a8c05a44f3cfc39a88fb8dc52c34382443a25f
SHA256

463cfe8c18198ee6e433e97dd5e96dd50fa2767290feabaaa27afe2bb765ed9f
SHA512

00846575b29ea58ba9671ec434791d6f57f4214afbb01802f2da61842ad11d7c2a2edcfa556c50f643d465e9de39a56ce1e618dea5b646de35a35b488d920b14
SSDEEP

49152:h33Nny7NUZGiSb/L+snmjUSfIO+b1LkeWqZt2OEq41id8uOqanxR+vdsNV8sRvh:l9y7FB+skUSflQ5ZZyid8uinxRQGV8sr

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
asupdchk.exe

Files

asupdchk.exe
.exe windows x86

c90d46d59ca328bd38be0f7d29279c6c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetFocus
MessageBoxA

msvcrt

_exit
_XcptFilter
exit
_acmdln
__getmainargs
_initterm
__setusermatherr
_adjust_fdiv
calloc
__p__fmode
__set_app_type
_except_handler3
_controlfp
strrchr
_putenv
realloc
sprintf
malloc
_snprintf
free
__p___argv
__p___argc
strncpy
__p__commode

python22

Py_Finalize
PyErr_Print
Py_InitModule4
PyRun_SimpleString
Py_GetPath
Py_Initialize
Py_SetProgramName
Py_OptimizeFlag
Py_VerboseFlag
Py_NoSiteFlag
Py_SetPythonHome
PySys_SetArgv
PyArg_ParseTuple
PyImport_Import
PyString_FromStringAndSize
PyModule_GetDict
PyObject_CallFunction
PyImport_ExecCodeModule
PyDict_New
PyInt_FromLong
PyDict_SetItem
PyDict_GetItemString
PyExc_KeyError
PyErr_SetString
PyInt_AsLong
PyString_FromString

kernel32

LocalFree
FormatMessageA
UnmapViewOfFile
GetLastError
GetModuleFileNameA
MapViewOfFile
CloseHandle
CreateFileMappingA
GetFileSize
CreateFileA
GetModuleHandleA
GetStartupInfoA
lstrlenA

Sections

.text
Size: 16KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c90d46d59ca328bd38be0f7d29279c6c

Headers

File Characteristics

Imports

user32

msvcrt

python22

kernel32

Sections

.text Size: 16KB - Virtual size: 13KB

.rdata Size: 4KB - Virtual size: 2KB

.data Size: 8KB - Virtual size: 5KB

.rsrc Size: 4KB - Virtual size: 2KB

.text
Size: 16KB - Virtual size: 13KB

.rdata
Size: 4KB - Virtual size: 2KB

.data
Size: 8KB - Virtual size: 5KB

.rsrc
Size: 4KB - Virtual size: 2KB