GenFileList[.]exe

General

Target

GenFileList.exe
Size

76KB
MD5

4d19337e2c33373574405b9df695d676
SHA1

02fac62f29d38d43102eafa4b6adb969ebcca7bb
SHA256

43565280414744fae900498991c29f0b5dddafd1506bb2bb577bc311a0cc594c
SHA512

4efd203b06f6b437676ecef325db53954d215f36a32e2bdd229b491599dae6801354041b7956a9b9c32392f831acbab39a5f00244aa2863c9e46e4a69c2659b7
SSDEEP

1536:fYfsxcH29sDfHbPV+4fEWTwhegqJBPny/1lW:fPgwsrHjED1sBPny/1lW

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
GenFileList.exe

Files

GenFileList.exe
.exe windows:4 windows x86

be64b84ad9a31c4d05e524eb2f7ed47f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetTickCount
GetLocaleInfoA
InitializeCriticalSection
GetACP
RaiseException
InterlockedExchange
DeleteCriticalSection
InterlockedDecrement
WaitForSingleObject
GetComputerNameW
CreateEventW
CreateThread
CloseHandle
InterlockedIncrement
WaitForMultipleObjects
EnterCriticalSection
LeaveCriticalSection
GetLastError
CreateIoCompletionPort
GetSystemInfo
PostQueuedCompletionStatus
GetExitCodeThread
TerminateThread
ResetEvent
SetEvent
GetQueuedCompletionStatus
GetCurrentThreadId
SetEnvironmentVariableA
CompareStringW
CompareStringA
LCMapStringW
LCMapStringA
GetVersionExA
HeapFree
FindFirstFileW
FindNextFileW
FindClose
FileTimeToSystemTime
FileTimeToLocalFileTime
ExitThread
HeapReAlloc
HeapAlloc
GetModuleHandleA
ExitProcess
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
IsBadWritePtr
GetProcAddress
TerminateProcess
GetCurrentProcess
HeapSize
TlsAlloc
SetLastError
TlsFree
TlsSetValue
TlsGetValue
WriteFile
SetFilePointer
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
UnhandledExceptionFilter
GetModuleFileNameA
GetModuleFileNameW
FreeEnvironmentStringsA
MultiByteToWideChar
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineA
GetCommandLineW
SetUnhandledExceptionFilter
QueryPerformanceCounter
GetCurrentProcessId
GetSystemTimeAsFileTime
RtlUnwind
VirtualQuery
WideCharToMultiByte
GetStringTypeA
GetStringTypeW
CreateFileW
SetStdHandle
FlushFileBuffers
GetOEMCP
GetCPInfo
GetTimeZoneInformation
LoadLibraryA
IsBadReadPtr
IsBadCodePtr
VirtualProtect
SetEndOfFile
ReadFile

ole32

StringFromGUID2
CoCreateGuid

Sections

.text
Size: 56KB - Virtual size: 54KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

be64b84ad9a31c4d05e524eb2f7ed47f

Headers

File Characteristics

Imports

kernel32

ole32

Sections

.text Size: 56KB - Virtual size: 54KB

.rdata Size: 12KB - Virtual size: 9KB

.data Size: 4KB - Virtual size: 10KB

.text
Size: 56KB - Virtual size: 54KB

.rdata
Size: 12KB - Virtual size: 9KB

.data
Size: 4KB - Virtual size: 10KB