makensis-bz2[.]exe

General

Target

makensis-bz2.exe
Size

226KB
MD5

f0dd77377d39ee031c5ce8128ee19af9
SHA1

6a48793a5c34f0982c206a5f7f228f0ca6cf970d
SHA256

8e096c939c96da5bd16ee2ab4f38c069bf09bddca166251717226d7525419f8a
SHA512

fc8746acadf580ce812a3ec9352f09deebb776c95dd1d2b2ad1f913d2a6ba0c69bff761acc3abe1aac115b806e17ace94f0e77df50e58f4020464d218eeb0407
SSDEEP

6144:+E0i6xeO8cWk41ReXEXeBQdcQplHc5QQf:Z0jF8doEXe8DK

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
makensis-bz2.exe

Files

makensis-bz2.exe
.exe windows:4 windows x86

47924a72d8fe724364a285815ff8118a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
MapViewOfFile
CreateFileMappingA
CreateFileA
GetTempFileNameA
GetTempPathA
GlobalAlloc
UnmapViewOfFile
SetCurrentDirectoryA
GetFileTime
FindNextFileA
GetFileSize
FindClose
FindFirstFileA
MulDiv
GetFullPathNameA
GetVersion
WriteFile
LoadLibraryA
FlushFileBuffers
GetOEMCP
SetEndOfFile
SetEnvironmentVariableA
CompareStringW
CompareStringA
HeapFree
HeapAlloc
HeapReAlloc
GetLastError
DeleteFileA
ExitProcess
TerminateProcess
GetCurrentProcess
SetConsoleCtrlHandler
ReadConsoleInputA
SetConsoleMode
GetConsoleMode
GetCommandLineA
GlobalFree
GetModuleHandleA
GetModuleFileNameA
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
GetACP
GetProcAddress
WideCharToMultiByte
ReadFile
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
SetFilePointer
GetFileAttributesA
UnhandledExceptionFilter
HeapSize
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetStringTypeW
GetEnvironmentStrings
GetEnvironmentStringsW
RtlUnwind
SetStdHandle
MultiByteToWideChar
GetStringTypeA
GetExitCodeProcess
WaitForSingleObject
CreateProcessA
LCMapStringA
LCMapStringW
GetCPInfo

user32

CharPrevA
wsprintfA
CharNextA
LoadImageA

gdi32

GetObjectA
DeleteObject

version

GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA

Sections

.text
Size: 142KB - Virtual size: 141KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 78KB - Virtual size: 89KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 928B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

47924a72d8fe724364a285815ff8118a

Headers

File Characteristics

Imports

kernel32

user32

gdi32

version

Sections

.text Size: 142KB - Virtual size: 141KB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 78KB - Virtual size: 89KB

.rsrc Size: 1024B - Virtual size: 928B

.text
Size: 142KB - Virtual size: 141KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 78KB - Virtual size: 89KB

.rsrc
Size: 1024B - Virtual size: 928B