a45c3e9692f14a88759c529883e3ee691d491fd9ae6845b4147e56321350768e

Sharing

Copy URL Twitter E-mail

General

Target

a45c3e9692f14a88759c529883e3ee691d491fd9ae6845b4147e56321350768e
Size

474KB
MD5

6ab09f61b392576b1d14d0bb50402952
SHA1

815be4db2b19ffdaca0b94a599f0a25911c94b74
SHA256

a45c3e9692f14a88759c529883e3ee691d491fd9ae6845b4147e56321350768e
SHA512

456417318434a4358678778374a5bb5bbf33e26d4c0a9491cb8bd7e132a59f90c529ca1f7b2812922cfa44c234d7542ae650b7a0c8e8b15f293ade9daf34f0ac
SSDEEP

6144:uWKy0XXzcByncoNPOInLLrT91I0EVFQFRSw+s9+lXjaoCph:iXXQU5POInLLrB1pOFQFww9WXa

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a45c3e9692f14a88759c529883e3ee691d491fd9ae6845b4147e56321350768e

Files

a45c3e9692f14a88759c529883e3ee691d491fd9ae6845b4147e56321350768e
.exe windows x86

ee65792fffd82d754c92a476f0221ef6

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
WriteFile
CreateFileA
GetModuleFileNameA
Sleep
GetProcAddress
LoadLibraryA
GetLastError
CreateMutexA
CompareStringW
CompareStringA
GetTimeZoneInformation
GetConsoleOutputCP
WriteConsoleA
SetStdHandle
SetFilePointer
GetLocaleInfoW
GetUserDefaultLCID
EnumSystemLocalesA
IsValidLocale
GetLocaleInfoA
GetDateFormatA
GetTimeFormatA
GetStringTypeW
GetStringTypeA
LCMapStringW
LCMapStringA
VirtualQuery
GetProcessHeap
InterlockedIncrement
InterlockedDecrement
InterlockedExchange
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
RtlUnwind
GetFileAttributesA
GetModuleHandleW
ExitProcess
RaiseException
GetCommandLineA
GetStartupInfoA
HeapValidate
IsBadReadPtr
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetModuleFileNameW
IsDebuggerPresent
DebugBreak
WideCharToMultiByte
MultiByteToWideChar
lstrlenA
TlsGetValue
TlsAlloc
TlsSetValue
GetCurrentThreadId
TlsFree
SetLastError
GetCurrentThread
TerminateProcess
GetCurrentProcess
GetACP
GetOEMCP
GetCPInfo
IsValidCodePage
GetStdHandle
FatalAppExitA
SetConsoleCtrlHandler
FreeLibrary
InitializeCriticalSectionAndSpinCount
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
GetFileType
HeapDestroy
HeapCreate
HeapFree
VirtualFree
HeapAlloc
HeapSize
HeapReAlloc
VirtualAlloc
FlushFileBuffers
GetConsoleCP
GetConsoleMode
OutputDebugStringA
WriteConsoleW
OutputDebugStringW
LoadLibraryW
SetEnvironmentVariableA

user32

EndDialog
DialogBoxParamA
DestroyWindow
DefWindowProcA
BeginPaint
EndPaint
PostQuitMessage
CreateWindowExA
ShowWindow
UpdateWindow
LoadIconA
LoadCursorA
RegisterClassExA
LoadStringA
LoadAcceleratorsA
GetMessageA
TranslateAcceleratorA
TranslateMessage
DispatchMessageA

Sections

.text
Size: 369KB - Virtual size: 369KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 72KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 7KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ee65792fffd82d754c92a476f0221ef6

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

Sections

.text Size: 369KB - Virtual size: 369KB

.rdata Size: 72KB - Virtual size: 72KB

.data Size: 7KB - Virtual size: 15KB

.idata Size: 4KB - Virtual size: 3KB

.rsrc Size: 4KB - Virtual size: 3KB

.reloc Size: 16KB - Virtual size: 16KB

.text
Size: 369KB - Virtual size: 369KB

.rdata
Size: 72KB - Virtual size: 72KB

.data
Size: 7KB - Virtual size: 15KB

.idata
Size: 4KB - Virtual size: 3KB

.rsrc
Size: 4KB - Virtual size: 3KB

.reloc
Size: 16KB - Virtual size: 16KB