a3242c1ed334a57d9140533e5eddd23be6f06069beaf8e2fa6168f5dd253c6fd

Sharing

Copy URL

Twitter E-mail

General

Target

a3242c1ed334a57d9140533e5eddd23be6f06069beaf8e2fa6168f5dd253c6fd
Size

3.1MB
MD5

6124a490330985ba9f3975216c197421
SHA1

5c0225b582dfa00c5ab20e079bc4845cf7ab32bb
SHA256

a3242c1ed334a57d9140533e5eddd23be6f06069beaf8e2fa6168f5dd253c6fd
SHA512

801c708f89ca21dc1b82b38b1f3654c4a467d95350d739b8b2123240c73b28581c2aebd324fc0b99fca6fd76350c38fce2f50f755825e70ed41e2c64aab9e0ec
SSDEEP

98304:zx43AyMOtFqZzFNSa/IkEOlUvsClwPk5D45CIlzeTGwBJ:GQqtF2+kEOlUkCl16CIlSiwBJ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a3242c1ed334a57d9140533e5eddd23be6f06069beaf8e2fa6168f5dd253c6fd

Files

a3242c1ed334a57d9140533e5eddd23be6f06069beaf8e2fa6168f5dd253c6fd
.exe windows:5 windows x64 arch:x64

38600ef14e505925cc81cbd8aeec4911

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

kernel32

OutputDebugStringW

user32

GetDlgCtrlID

gdi32

SetBkMode

comdlg32

GetOpenFileNameW

advapi32

RegQueryValueExW

shell32

ShellExecuteW

ole32

CoTaskMemFree

oleaut32

VarUI4FromStr

shlwapi

SHSetValueW

comctl32

InitCommonControlsEx

version

GetFileVersionInfoSizeW

iphlpapi

GetInterfaceInfo

msvcrt

_wcsnicmp

psapi

GetMappedFileNameW

Sections

.text
Size: 1.5MB - Virtual size: 2.0MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.sedata
Size: 1.5MB - Virtual size: 1.5MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 74KB - Virtual size: 76KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.sedata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

38600ef14e505925cc81cbd8aeec4911

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

shell32

ole32

oleaut32

shlwapi

comctl32

version

iphlpapi

msvcrt

psapi

Sections

.text Size: 1.5MB - Virtual size: 2.0MB

.sedata Size: 1.5MB - Virtual size: 1.5MB

.idata Size: 1KB - Virtual size: 4KB

.rsrc Size: 74KB - Virtual size: 76KB

.sedata Size: 4KB - Virtual size: 4KB

.text
Size: 1.5MB - Virtual size: 2.0MB

.sedata
Size: 1.5MB - Virtual size: 1.5MB

.idata
Size: 1KB - Virtual size: 4KB

.rsrc
Size: 74KB - Virtual size: 76KB

.sedata
Size: 4KB - Virtual size: 4KB