f280973f83be39e619163ad3b2794d68a66c92de4b10a9fd629e7e194ebedce7

Sharing

Copy URL Twitter E-mail

General

Target

f280973f83be39e619163ad3b2794d68a66c92de4b10a9fd629e7e194ebedce7
Size

95KB
MD5

bb1799e4ebb4bbe484a4360ea3ea932e
SHA1

2efea34982b5c0737bcf82ea3d5af44d5123e08e
SHA256

f280973f83be39e619163ad3b2794d68a66c92de4b10a9fd629e7e194ebedce7
SHA512

7a242ed6d4d876aff5d3b9045d3aca687e4e602f616e230dc532bf0e4ab8fe354b297c0dae20a60d191ef69c0764de9f73e807ac7d09f75d5fd89d5078d8a338
SSDEEP

1536:3jpgWJ4idd9o+7XWZd9vg7tytYPdqeUtOR1FvHNmCaKr/Z8lqxAEEf5fJv5:39Riidl7X0d9vgx7UeFvHN2q8lq6Xf5f

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f280973f83be39e619163ad3b2794d68a66c92de4b10a9fd629e7e194ebedce7

Files

f280973f83be39e619163ad3b2794d68a66c92de4b10a9fd629e7e194ebedce7
.dll windows x64

08a0cccf279065bf6de4c27e0f67aa54

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

Imports

kernel32

GetLastError
MultiByteToWideChar
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
WideCharToMultiByte
Sleep
CloseHandle
CreateFileA
GetProcAddress
LoadLibraryA
GetModuleFileNameA
SetLastError
TerminateProcess
GetCurrentThreadId
lstrlenA
GetTickCount
LocalFree
HeapSize
WriteConsoleW
InitializeCriticalSectionAndSpinCount
GetConsoleOutputCP
WriteConsoleA
SetFilePointer
FlushFileBuffers
SetStdHandle
GetStringTypeW
GetStringTypeA
GetLocaleInfoA
GetCurrentProcessId
QueryPerformanceCounter
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
IsValidCodePage
HeapFree
RtlLookupFunctionEntry
RtlUnwindEx
GetSystemTimeAsFileTime
HeapAlloc
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
RtlVirtualUnwind
RtlCaptureContext
RaiseException
RtlPcToFileHeader
HeapReAlloc
FlsSetValue
GetCommandLineA
LCMapStringA
LCMapStringW
GetCPInfo
EncodePointer
DecodePointer
FlsGetValue
FlsFree
FlsAlloc
HeapSetInformation
HeapCreate
HeapDestroy
WriteFile
GetConsoleCP
GetConsoleMode
GetModuleHandleW
ExitProcess
GetStdHandle
SetHandleCount
GetFileType
GetStartupInfoA
GetACP
GetOEMCP

user32

wsprintfA

ole32

CoInitialize
CoCreateInstance

oleaut32

SysAllocString
VariantClear
SysFreeString

Exports

Exports

SmssGetChannels
SmssInitialize
SmssSendSms
SmssShutdown

Sections

.text
Size: 62KB - Virtual size: 62KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 18KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 7KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

08a0cccf279065bf6de4c27e0f67aa54

Headers

File Characteristics

Imports

kernel32

user32

ole32

oleaut32

Exports

Exports

Sections

.text Size: 62KB - Virtual size: 62KB

.rdata Size: 18KB - Virtual size: 17KB

.data Size: 7KB - Virtual size: 16KB

.pdata Size: 4KB - Virtual size: 3KB

.reloc Size: 2KB - Virtual size: 2KB

.text
Size: 62KB - Virtual size: 62KB

.rdata
Size: 18KB - Virtual size: 17KB

.data
Size: 7KB - Virtual size: 16KB

.pdata
Size: 4KB - Virtual size: 3KB

.reloc
Size: 2KB - Virtual size: 2KB