af99a7445da517fa63b830ecee54cc8d

General

Target

af99a7445da517fa63b830ecee54cc8d
Size

3.4MB
MD5

af99a7445da517fa63b830ecee54cc8d
SHA1

180ec51726bb084756edd497e2e87fe86797de2e
SHA256

179436bf13bd6c98d21b11b3a6f4e16031509714517553c1ce02dca158f69fe9
SHA512

9e0f88368ea388a5dcb3a91fd18cbbd80973708db1a2c32892c3ca1873d917a122edc3da8be09cc08799cc74247a90b5bbc1c8839f8020f86c4af4e44f32d481
SSDEEP

98304:QmwiQsv+pIB5Vh/IAJ7ApW4Aeic9QdxRG3nX:Q0ZmCnh/1xApZAeic9IxR

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
af99a7445da517fa63b830ecee54cc8d

Files

af99a7445da517fa63b830ecee54cc8d
.exe windows:4 windows x86 arch:x86

76f247496eab3aadb646adc01cda477b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCurrentThreadId
GetCurrentProcess
GetSystemTimeAsFileTime
GetModuleHandleW
QueryPerformanceCounter
CloseHandle
UnhandledExceptionFilter
MultiByteToWideChar
WideCharToMultiByte
SetLastError
HeapFree
HeapAlloc
LocalFree
DeleteCriticalSection
WriteFile
WaitForSingleObject
GetStdHandle
GetStartupInfoW
IsDebuggerPresent
FindClose
ReadFile
RaiseException
GetFileType
TlsGetValue
InitializeCriticalSection
HeapReAlloc
HeapSetInformation
HeapSize
TlsFree
GetFileAttributesW
CompareStringW
GetOEMCP
FreeEnvironmentStringsW
IsProcessorFeaturePresent
FindNextFileW
DeleteFileW
GetCommandLineA
ResetEvent
ReleaseMutex
CreateFileA
OutputDebugStringW
GetLocaleInfoW
UnmapViewOfFile
GetExitCodeProcess

user32

LoadStringW
ShowWindow
DefWindowProcW
PostQuitMessage
CreateWindowExW
SetWindowLongW
GetDlgItem
GetSystemMetrics
GetDC
GetWindowRect
GetClientRect
SetWindowPos
EnableWindow
GetSysColor
EndPaint
BeginPaint
ScreenToClient
SetCursor
KillTimer
EnableMenuItem
GetWindow
GetWindowTextW
SystemParametersInfoW
GetKeyState
CharUpperW

Sections

.idata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 3.4MB - Virtual size: 3.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 612KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

76f247496eab3aadb646adc01cda477b

Headers

File Characteristics

Imports

kernel32

user32

Sections

.idata Size: 2KB - Virtual size: 1KB

.rdata Size: 3.4MB - Virtual size: 3.4MB

.data Size: - Virtual size: 612KB

.text Size: 6KB - Virtual size: 6KB

.idata
Size: 2KB - Virtual size: 1KB

.rdata
Size: 3.4MB - Virtual size: 3.4MB

.data
Size: - Virtual size: 612KB

.text
Size: 6KB - Virtual size: 6KB