gfunsize[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

gfunsize.exe
Size

540KB
MD5

6b492e72f94ca7b2fab2b0e13a48b69d
SHA1

945159cfe3683c01445cd0ca82c10a9a926270ec
SHA256

ad148a54ce08bece50e50b8eac30d48ed2546001ff9e62d9bc0b7772f5296683
SHA512

a7e00c7767d101625c477deb3ffdbc895071103f320f25d58db2e34dc7a0ff91c1f2bcfe3043f73026f7c09e1d48440f8dabda3f1717550d9fe3e18a3c371443
SSDEEP

12288:s7sBTKEqI9D6Nyj6aWAOqmOkzHBEEnGWyh:isBTKstzOqmfb/yh

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
gfunsize.exe

Files

gfunsize.exe
.exe windows x86

8331b400980eca31107644484b135a60

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

ws2_32

select
gethostbyname
WSACleanup
gethostname
WSAStartup

kernel32

CompareStringA
GetLocaleInfoW
GetConsoleOutputCP
WriteConsoleA
LockFile
UnlockFile
GetLastError
GetModuleFileNameA
LoadLibraryA
GetProcAddress
CloseHandle
GetFullPathNameA
GetVersionExA
FindFirstFileA
FindNextFileA
FindClose
GetFileAttributesA
GetModuleHandleA
GetCurrentProcess
GetStdHandle
GetConsoleTitleA
CompareStringW
Sleep
SetPriorityClass
GetTickCount
GetCurrentProcessId
OpenProcess
GetExitCodeProcess
GetDiskFreeSpaceExA
GlobalMemoryStatus
GetSystemInfo
GetVolumeInformationA
SetHandleInformation
CreateFileMappingA
MapViewOfFile
UnmapViewOfFile
FormatMessageA
FreeLibrary
WriteFile
CreateFileA
GetStringTypeW
CreateProcessA
MultiByteToWideChar
GetCommandLineA
GetModuleHandleW
ExitProcess
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
EnterCriticalSection
LeaveCriticalSection
SetStdHandle
GetFileType
WriteConsoleW
GetModuleFileNameW
HeapReAlloc
HeapAlloc
HeapFree
MoveFileA
SetFileTime
LocalFileTimeToFileTime
SystemTimeToFileTime
WaitForSingleObject
SetEndOfFile
GetProcessHeap
GetTimeZoneInformation
DeleteFileA
GetSystemTimeAsFileTime
ReadFile
FileTimeToSystemTime
FileTimeToLocalFileTime
GetDriveTypeA
GetFileInformationByHandle
PeekNamedPipe
SetFilePointer
InterlockedIncrement
InterlockedDecrement
GetCPInfo
WideCharToMultiByte
GetConsoleCP
GetConsoleMode
SetFileAttributesA
CreateDirectoryA
RemoveDirectoryA
SetEnvironmentVariableA
GetCurrentDirectoryA
SetCurrentDirectoryA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
GetStartupInfoA
DeleteCriticalSection
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
SetLastError
GetCurrentThreadId
HeapCreate
VirtualFree
QueryPerformanceCounter
InitializeCriticalSectionAndSpinCount
LoadLibraryW
HeapSize
VirtualAlloc
FlushFileBuffers
GetACP
GetOEMCP
IsValidCodePage
LCMapStringA
LCMapStringW
SetEnvironmentVariableW
RtlUnwind
GetUserDefaultLCID
GetLocaleInfoA
EnumSystemLocalesA
IsValidLocale
GetStringTypeA

user32

MessageBoxA

advapi32

GetUserNameA

Sections

.text
Size: 456KB - Virtual size: 455KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.ghcovfz
Size: - Virtual size: 1B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ghcovcz
Size: - Virtual size: 4B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ghcovdz
Size: - Virtual size: 8B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 16KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 48KB - Virtual size: 123KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ghcovfa
Size: 4KB - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ghcovca
Size: 4KB - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ghcovda
Size: 4KB - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.sxdata
Size: 4KB - Virtual size: 284B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

8331b400980eca31107644484b135a60

Headers

File Characteristics

Imports

ws2_32

kernel32

user32

advapi32

Sections

.text Size: 456KB - Virtual size: 455KB

.ghcovfz Size: - Virtual size: 1B

.ghcovcz Size: - Virtual size: 4B

.ghcovdz Size: - Virtual size: 8B

.rdata Size: 16KB - Virtual size: 14KB

.data Size: 48KB - Virtual size: 123KB

.ghcovfa Size: 4KB - Virtual size: 4B

.ghcovca Size: 4KB - Virtual size: 4B

.ghcovda Size: 4KB - Virtual size: 4B

.sxdata Size: 4KB - Virtual size: 284B

.text
Size: 456KB - Virtual size: 455KB

.ghcovfz
Size: - Virtual size: 1B

.ghcovcz
Size: - Virtual size: 4B

.ghcovdz
Size: - Virtual size: 8B

.rdata
Size: 16KB - Virtual size: 14KB

.data
Size: 48KB - Virtual size: 123KB

.ghcovfa
Size: 4KB - Virtual size: 4B

.ghcovca
Size: 4KB - Virtual size: 4B

.ghcovda
Size: 4KB - Virtual size: 4B

.sxdata
Size: 4KB - Virtual size: 284B