d77101e0020c2771c9e6672bbbefcc104ad644cb8a658fb555372b40dc674136

Sharing

Copy URL Twitter E-mail

General

Target

d77101e0020c2771c9e6672bbbefcc104ad644cb8a658fb555372b40dc674136
Size

42KB
MD5

6e32ddcfa6e40eb3b3fb2fa7506ac513
SHA1

11c81c526198422b94aaefad944d9d6bd6da3130
SHA256

d77101e0020c2771c9e6672bbbefcc104ad644cb8a658fb555372b40dc674136
SHA512

3036806b8f3a7868dcaf57584413395bcae56b40b9e14d4635a323fd6d937cbc655a6c1bd22b1ec3a807e6f8d0bcfca0a8bada9c48288e3d20271aa3ffc192cc
SSDEEP

768:Mrmn1P5ZzqH+hXTjjGOURZ+vhoHQKjcdu9cqMf:Me1hZzqH+hjjO+ZqTcdB

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d77101e0020c2771c9e6672bbbefcc104ad644cb8a658fb555372b40dc674136

Files

d77101e0020c2771c9e6672bbbefcc104ad644cb8a658fb555372b40dc674136
.exe windows:5 windows x64

171bc739112d683fda588d1ae8676a39

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

msvcrt

__wgetmainargs
__lconv_init
signal
_wcmdln
__winitenv
_initterm
_fpreset
_cexit
exit
__set_app_type
free
_amsg_exit
__setusermatherr
memcpy
memset
_vsnwprintf
_wcsicmp
wcstok
wcsrchr
wcslen
wcschr
_wcsdup
towupper
realloc
malloc

kernel32

GetFullPathNameW
TlsGetValue
GetLastError
DeleteCriticalSection
LoadLibraryW
QueryPerformanceCounter
GetTickCount
GetSystemTimeAsFileTime
GetCurrentThreadId
GetCurrentProcessId
Sleep
SetUnhandledExceptionFilter
GetStartupInfoW
GetConsoleMode
LockResource
LoadResource
GetFileType
FindResourceExW
WriteConsoleW
GetConsoleOutputCP
WideCharToMultiByte
WriteFile
SetLastError
LeaveCriticalSection
HeapFree
HeapAlloc
GetProcessHeap
EnterCriticalSection
FileTimeToLocalFileTime
FileTimeToSystemTime
FindClose
FindFirstFileExW
FindNextFileW
GetCurrentDirectoryW
GetEnvironmentVariableW
GetFileAttributesW
GetModuleHandleA
GetProcAddress
GetStdHandle
GetDateFormatW
GetTimeFormatW
InitializeCriticalSection

Sections

.text
Size: 15KB - Virtual size: 14KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 608B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 1024B - Virtual size: 732B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 28B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

171bc739112d683fda588d1ae8676a39

Headers

DLL Characteristics

File Characteristics

Imports

msvcrt

kernel32

Sections

.text Size: 15KB - Virtual size: 14KB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 512B - Virtual size: 608B

.pdata Size: 1024B - Virtual size: 732B

.rsrc Size: 20KB - Virtual size: 19KB

.reloc Size: 512B - Virtual size: 28B

.text
Size: 15KB - Virtual size: 14KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 512B - Virtual size: 608B

.pdata
Size: 1024B - Virtual size: 732B

.rsrc
Size: 20KB - Virtual size: 19KB

.reloc
Size: 512B - Virtual size: 28B