842b3ab310770afe04bedfe4d5064094e044a07277eef0c636e6da6e7fa13eda

General

Target

842b3ab310770afe04bedfe4d5064094e044a07277eef0c636e6da6e7fa13eda
Size

488KB
MD5

ba77fc10e7b0e18bbc546af784f5c485
SHA1

c644c242294b7bfa5ed47058c4be1ba8e8b719f5
SHA256

842b3ab310770afe04bedfe4d5064094e044a07277eef0c636e6da6e7fa13eda
SHA512

a95d1fd723ce5d1ef22f0a05c3a33db88900872ef6731dda880d4afcee0e0279d13c79631669d212e07f624e99eda8036ab2210346aa7dd26000365c9455a499
SSDEEP

3072:dgB2rhuS/tSOnQy8A9FwjxH9999999999CwO:dvQdOnQyo999999999x

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
842b3ab310770afe04bedfe4d5064094e044a07277eef0c636e6da6e7fa13eda

Files

842b3ab310770afe04bedfe4d5064094e044a07277eef0c636e6da6e7fa13eda
.exe windows:4 windows x86

cc29f645f915a50ceebc4a1ce7b0ed4a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryA
SetStdHandle
HeapReAlloc
VirtualAlloc
HeapAlloc
SetFilePointer
GetStringTypeW
GetStringTypeA
LCMapStringW
LCMapStringA
MultiByteToWideChar
WriteFile
RtlUnwind
HeapFree
VirtualFree
GetProcAddress
HeapDestroy
GetFileType
GetStdHandle
SetHandleCount
GetEnvironmentStringsW
GetEnvironmentStrings
WideCharToMultiByte
FreeEnvironmentStringsW
FreeEnvironmentStringsA
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
GetOEMCP
GetACP
GetCPInfo
ExitProcess
FreeLibrary
GetPrivateProfileStringA
GetPrivateProfileIntA
GetVersionExA
GetLocalTime
CreateMutexA
CloseHandle
OutputDebugStringA
GetPrivateProfileStructA
GetModuleFileNameA
GetLastError
HeapCreate
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetVersion
FlushFileBuffers

user32

GetWindowLongA
GetClientRect
FillRect
BeginPaint
EndPaint
PostMessageA
SetTimer
IsWindow
DestroyWindow
GetSystemMetrics
DefWindowProcA
RegisterClassA
KillTimer
RegisterClassExA
LoadIconA
LoadCursorA
CreateWindowExA
SetWindowPos
UpdateWindow
ShowWindow
GetDC
ReleaseDC
RedrawWindow
PostQuitMessage
FindWindowA
GetWindowRect
SetWindowLongA
GetMessageA
TranslateMessage
DispatchMessageA

gdi32

GetDeviceCaps
SetBkMode
CreateSolidBrush
SetTextColor
CreateFontA
GetTextExtentPoint32A
TextOutA
CreateCompatibleDC
SelectObject
DeleteDC
GetStockObject
DeleteObject

Sections

.text
Size: 24KB - Virtual size: 21KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 452KB - Virtual size: 449KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

cc29f645f915a50ceebc4a1ce7b0ed4a

Headers

File Characteristics

Imports

kernel32

user32

gdi32

Sections

.text Size: 24KB - Virtual size: 21KB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 4KB - Virtual size: 9KB

.rsrc Size: 452KB - Virtual size: 449KB

.text
Size: 24KB - Virtual size: 21KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 4KB - Virtual size: 9KB

.rsrc
Size: 452KB - Virtual size: 449KB