da3b112c0ef35992580450e7478b76b7f23552ec271798746886cad22bfd5485

General

Target

da3b112c0ef35992580450e7478b76b7f23552ec271798746886cad22bfd5485
Size

360KB
MD5

e405768ae0832fb0b9582291a03ea903
SHA1

68bc0a6bd601010cb9f3bf2d6bf0b40aadc4cbbd
SHA256

da3b112c0ef35992580450e7478b76b7f23552ec271798746886cad22bfd5485
SHA512

1f20f6560f2b38f2f72b087a1847685de677181bdb92cb27d119acdd42be460a4deec5dafc1e836bbe3965aa2fec81c920cbbe3d5fac7843839fc1c14576d111
SSDEEP

6144:sKPhSFqG/6OJv3XLgBCJg+Hv7u7ouKhqywzdrjAGRw3/p25:smSFj/6837gGgMDKRKYjASw25

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
da3b112c0ef35992580450e7478b76b7f23552ec271798746886cad22bfd5485

Files

da3b112c0ef35992580450e7478b76b7f23552ec271798746886cad22bfd5485
.exe windows:4 windows x86

ef02d5b15bf5bad9469c58cf422ee6e9

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

DisableThreadLibraryCalls
FreeConsole
GetLocaleInfoA
GetLastError
FindAtomA
DeleteAtom
GetUserDefaultLCID
BackupWrite
GetProfileIntW
GetSystemInfo
SetConsoleTextAttribute
HeapUnlock
SetConsoleMode
CopyFileW
GetFileAttributesA
DisableThreadLibraryCalls
GetCurrencyFormatA
GetLogicalDriveStringsW
Beep
MoveFileW
GetThreadLocale
EscapeCommFunction
SetLocalTime
SetFileTime
LocalHandle
CreateMutexW
SetDefaultCommConfigW
TerminateProcess
GetConsoleWindow
DeleteVolumeMountPointW
ReleaseMutex
GlobalMemoryStatus
WritePrivateProfileSectionA
GetSystemDirectoryW
FindResourceExW
GetProcAddress
ReplaceFileA
SetupComm
GetPrivateProfileSectionW
DebugActiveProcess
SetLocaleInfoW
GetWindowsDirectoryA
GetTimeFormatA
EnumSystemLanguageGroupsA
AllocConsole

Sections

.text
Size: 68KB - Virtual size: 67KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 272KB - Virtual size: 271KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 15KB - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

ef02d5b15bf5bad9469c58cf422ee6e9

Headers

File Characteristics

Imports

kernel32

Sections

.text Size: 68KB - Virtual size: 67KB

.data Size: 2KB - Virtual size: 4KB

.idata Size: 2KB - Virtual size: 1KB

.CRT Size: 272KB - Virtual size: 271KB

.rsrc Size: 15KB - Virtual size: 84KB

.text
Size: 68KB - Virtual size: 67KB

.data
Size: 2KB - Virtual size: 4KB

.idata
Size: 2KB - Virtual size: 1KB

.CRT
Size: 272KB - Virtual size: 271KB

.rsrc
Size: 15KB - Virtual size: 84KB