Malicious_03b7cf6112d0c773936b263aa185d0dc33c735a1826e0e5469648374594a2cb1[.]dontrunthis

General

Target

Malicious_03b7cf6112d0c773936b263aa185d0dc33c735a1826e0e5469648374594a2cb1.dontrunthis
Size

2.6MB
MD5

13e7f14069196e372b42a40fd1c095be
SHA1

b1012577a9820d1d7f16dab44e765200fbdec973
SHA256

df46a759ca06163f4a5b3c414595a805e2674b24fd3fc890e0ec2c91b2775d19
SHA512

124e085dc86a37539a445847918ce19d66059d46a5ec1a37e0478ad92b3f166f2d346317a181e19c642d6b586bb99142ee2237e9f22a1a770472cc0c1fa50e31
SSDEEP

49152:HoTvYaFDwj0/THHef0TEBJ8M5gGB4BOPxxKy/7U1lHZ79kXqMZR:+Yzief0TEY7GCs/745C6Mb

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
Malicious_03b7cf6112d0c773936b263aa185d0dc33c735a1826e0e5469648374594a2cb1.dontrunthis

Files

Malicious_03b7cf6112d0c773936b263aa185d0dc33c735a1826e0e5469648374594a2cb1.dontrunthis
.exe windows x86

25355753c150aa2006916e7e151516f2

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CancelTimerQueueTimer
InterlockedExchange
GetCurrentProcessId
GetUserDefaultLCID
GetSystemTimeAsFileTime
CloseHandle
DeactivateActCtx
GetCurrentProcess
EnumDateFormatsExW
GetModuleHandleW
GetConsoleNlsMode
FatalExit
VirtualAlloc
GetCurrentThreadId
PurgeComm
LeaveCriticalSection
TerminateProcess
GetLastError
ClearCommBreak
CreateMutexW
MoveFileA
GetFileSize
ExitThread
DeleteCriticalSection
CreateFileW
AllocConsole
GetTempPathW
OpenEventW
DeleteTimerQueue
OpenConsoleW
FindAtomW
WideCharToMultiByte
ExitProcess
BeginUpdateResourceW
CreateMemoryResourceNotification
SetUnhandledExceptionFilter
GetConsoleCP
AddAtomW
CancelIo
EnterCriticalSection
CopyFileA

msvcrt

_atoldbl
_assert
_cgets
_cgetws
_cabs
_beep
_atoi64
_close
_access
_chdir

ws2_32

WSACleanup
accept
listen
WSAStartup
closesocket
bind
socket
WSALookupServiceNextA
select

Sections

.text
Size: 86KB - Virtual size: 86KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 92KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: 512B - Virtual size: 256B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 1024B - Virtual size: 576B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

25355753c150aa2006916e7e151516f2

Headers

File Characteristics

Imports

kernel32

msvcrt

ws2_32

Sections

.text Size: 86KB - Virtual size: 86KB

.data Size: - Virtual size: 92KB

.bss Size: 512B - Virtual size: 256B

.rdata Size: 2KB - Virtual size: 1KB

.rsrc Size: 3KB - Virtual size: 2KB

.edata Size: 1024B - Virtual size: 576B

.text
Size: 86KB - Virtual size: 86KB

.data
Size: - Virtual size: 92KB

.bss
Size: 512B - Virtual size: 256B

.rdata
Size: 2KB - Virtual size: 1KB

.rsrc
Size: 3KB - Virtual size: 2KB

.edata
Size: 1024B - Virtual size: 576B