c1264c5549192d66e6f84526cffa0db5a182dc13285493706f9bfefd8cbe22a1

General

Target

c1264c5549192d66e6f84526cffa0db5a182dc13285493706f9bfefd8cbe22a1
Size

29KB
MD5

8b77a343a1fff066a6f8ddc1962d1007
SHA1

f223ce7a3f49e10a98acc43efcb137e08ec0d52f
SHA256

c1264c5549192d66e6f84526cffa0db5a182dc13285493706f9bfefd8cbe22a1
SHA512

3599594a75f3098e1dd0d58437b07eddf6ab4a365ef12e8753e7f3c77a9269cae39d2fc4defdfef202578030e392db0c98ee3581e20f7a3ebc9b7ac6bf02340a
SSDEEP

192:07KMt6SYjEixZKVh29TY+plIhkgIj6qpT/O8uXJ65SxhFod+Rd:Ib6S2xZwh2hYO2kGqVW8GUSxAc

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c1264c5549192d66e6f84526cffa0db5a182dc13285493706f9bfefd8cbe22a1

Files

c1264c5549192d66e6f84526cffa0db5a182dc13285493706f9bfefd8cbe22a1
.exe windows x86

a41227d3f7d045a1270dd8dc877bf6a5

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

MessageBoxA

kernel32

SetUnhandledExceptionFilter
GetModuleHandleW
VirtualProtect
VirtualFree
VirtualAlloc
Sleep
LoadLibraryA
GetProcAddress
ExitProcess
IsBadReadPtr
GetTickCount
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
IsProcessorFeaturePresent
QueryPerformanceCounter
GetCurrentProcessId
GetCurrentThreadId
GetSystemTimeAsFileTime
InitializeSListHead
IsDebuggerPresent

ucrtbased

_set_app_type
__setusermatherr
_configure_narrow_argv
_initialize_narrow_environment
_get_initial_narrow_environment
_initterm
_initterm_e
exit
_exit
_set_fmode
__p___argc
__p___argv
_cexit
_c_exit
_register_thread_local_exe_atexit_callback
_configthreadlocale
_set_new_mode
__p__commode
_initialize_onexit_table
_register_onexit_function
_crt_atexit
_controlfp_s
terminate
_seh_filter_exe

Sections

.text
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 912B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.gfids
Size: 512B - Virtual size: 32B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a41227d3f7d045a1270dd8dc877bf6a5

Headers

DLL Characteristics

File Characteristics

Imports

user32

kernel32

ucrtbased

Sections

.text Size: 8KB - Virtual size: 8KB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 512B - Virtual size: 912B

.gfids Size: 512B - Virtual size: 32B

.rsrc Size: 16KB - Virtual size: 15KB

.text
Size: 8KB - Virtual size: 8KB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 512B - Virtual size: 912B

.gfids
Size: 512B - Virtual size: 32B

.rsrc
Size: 16KB - Virtual size: 15KB