b742b5f57aa0f461c37b41d055203529dbcddcf68ae98427296ff530980dbbe3

General

Target

b742b5f57aa0f461c37b41d055203529dbcddcf68ae98427296ff530980dbbe3
Size

78KB
MD5

480d666a896019e7a0363b91b93e3bb8
SHA1

aec967dc854f0f4d4c5f7e96f903ae9b535dc988
SHA256

b742b5f57aa0f461c37b41d055203529dbcddcf68ae98427296ff530980dbbe3
SHA512

81fd770f236e4e69ef847fc48663453b969c03860fb78dde6dac763033891a06e329cddcd2b62d5ae5d4586a4440209a1ba1d5523fe3f104d890795b06ee6db3
SSDEEP

1536:dw6EoAON6GbPLN4IpGjjQ6yfpg5a1nurCX6rNgPtsmhYjVb:dABOlbPLN468E6yxg5a1uuK8tThy

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b742b5f57aa0f461c37b41d055203529dbcddcf68ae98427296ff530980dbbe3

Files

b742b5f57aa0f461c37b41d055203529dbcddcf68ae98427296ff530980dbbe3
.exe windows:4 windows x64 arch:x64

e59e2521cb6cdb12938b952ee7a1f18c

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

kernel32

SetEvent
ReleaseMutex
WaitForSingleObject
Sleep
GetLastError
CloseHandle
SetFilePointer
ReadFile
CreateFileW
GetStdHandle
CreateThread
GetConsoleScreenBufferInfo
CreateEventW
CreateMutexW
GetConsoleMode
SetConsoleCursorPosition
FillConsoleOutputAttribute
FillConsoleOutputCharacterW
ScrollConsoleScreenBufferW
SetConsoleWindowInfo
ReadConsoleOutputCharacterW
ReadConsoleInputW
WaitForMultipleObjectsEx
SetConsoleMode
ExitProcess
GetCommandLineW
WriteFile
WriteConsoleW
SetConsoleTextAttribute
OutputDebugStringW
HeapAlloc
GetProcessHeap
HeapFree
ResetEvent
PeekNamedPipe
GetFileType
GetCurrentProcess
FormatMessageW
GetModuleHandleW
LocalFree
SetLastError
GetFileAttributesW
GetFileSize
WideCharToMultiByte
MultiByteToWideChar
FindClose
SetConsoleCtrlHandler
GlobalFree
GlobalAlloc
WriteConsoleOutputAttribute
ReadConsoleOutputW
GetSystemDirectoryW
GetProcAddress
GetVersion
GetEnvironmentVariableW
GetFileTime
GetFileInformationByHandle
FindNextFileW
FindFirstFileW
GetCurrentDirectoryW
GetModuleFileNameW

Sections

.text
Size: 55KB - Virtual size: 55KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 17KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 776B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e59e2521cb6cdb12938b952ee7a1f18c

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

Sections

.text Size: 55KB - Virtual size: 55KB

.rdata Size: 17KB - Virtual size: 17KB

.data Size: 512B - Virtual size: 1KB

.pdata Size: 2KB - Virtual size: 2KB

.rsrc Size: 1024B - Virtual size: 776B

.text
Size: 55KB - Virtual size: 55KB

.rdata
Size: 17KB - Virtual size: 17KB

.data
Size: 512B - Virtual size: 1KB

.pdata
Size: 2KB - Virtual size: 2KB

.rsrc
Size: 1024B - Virtual size: 776B