3386d5c099de6ad0348255b0caf445540973d2696a427fba3d70e23add172803

Sharing

Copy URL Twitter E-mail

General

Target

3386d5c099de6ad0348255b0caf445540973d2696a427fba3d70e23add172803
Size

320KB
MD5

5a409e8d4fd7c528d113924eda76ddea
SHA1

3c832aed7b2a518e3c25a14cf73601e8cf52ddc6
SHA256

3386d5c099de6ad0348255b0caf445540973d2696a427fba3d70e23add172803
SHA512

8bf1c27f8f08ef83e4a79a0b8b758920dbe77f059d401eb925e6fcef9c30032ec189effe52ba1d1b4d4a1e1334b97239240ffa247b18cac8810f0931e030630f
SSDEEP

6144:pvlUZFIx6HLWSKUOGou6Z2VcApEHoWxWUoDP6CD0ze1:pvloFVHSSKqoQVhWosKPLD0zW

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3386d5c099de6ad0348255b0caf445540973d2696a427fba3d70e23add172803

Files

3386d5c099de6ad0348255b0caf445540973d2696a427fba3d70e23add172803
.exe windows:4 windows x86

c422aece1ccba5962f1088a5de378f59

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

WaitForSingleObject
CreateProcessA
WinExec
GetWindowsDirectoryA
SetCurrentDirectoryA
WriteFile
SizeofResource
CopyFileA
GetTempPathA
FindResourceA
Sleep
DeleteFileA
FreeLibrary
GetProcAddress
LoadLibraryA
GetSystemDirectoryA
GetModuleFileNameA
GlobalUnlock
UnmapViewOfFile
CloseHandle
LockResource
LoadResource
CreateFileA
GetCommandLineA
GetStartupInfoA
CompareStringA
SetEndOfFile
GetOEMCP
GetACP
GetCPInfo
LCMapStringW
LCMapStringA
GetStringTypeW
GetStringTypeA
MultiByteToWideChar
GetTimeZoneInformation
SetStdHandle
FlushFileBuffers
RtlUnwind
GetFileType
GetStdHandle
SetHandleCount
GetEnvironmentStrings
GlobalFree
GetLastError
SetEnvironmentVariableA
CompareStringW
HeapReAlloc
HeapAlloc
HeapFree
FindFirstFileA
FindNextFileA
FileTimeToSystemTime
FileTimeToLocalFileTime
GetModuleHandleA
WideCharToMultiByte
GetEnvironmentStringsW
GetVersion
ExitProcess
ReadFile
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
TerminateProcess
GetCurrentProcess
SetFilePointer
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW

user32

EnableWindow
CallWindowProcA
GetDlgItem
GetParent
SendMessageA
ReleaseDC
GetDC
DialogBoxParamA
DestroyWindow
PostQuitMessage
EndDialog
GetWindowRect
GetSystemMetrics
SetWindowPos
SetWindowTextA
GetWindowLongA
SetWindowLongA
ScreenToClient
MoveWindow

gdi32

CreateCompatibleDC
DeleteObject
CreateDIBitmap
CreatePalette
BitBlt
SelectObject
DeleteDC

version

VerInstallFileA

Sections

.text
Size: 36KB - Virtual size: 33KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 188KB - Virtual size: 187KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c422aece1ccba5962f1088a5de378f59

Headers

File Characteristics

Imports

kernel32

user32

gdi32

version

Sections

.text Size: 36KB - Virtual size: 33KB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 4KB - Virtual size: 9KB

.rsrc Size: 188KB - Virtual size: 187KB

.text
Size: 36KB - Virtual size: 33KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 4KB - Virtual size: 9KB

.rsrc
Size: 188KB - Virtual size: 187KB