b045791c670c66600b7814d04c24880f

General

Target

b045791c670c66600b7814d04c24880f
Size

3.4MB
MD5

b045791c670c66600b7814d04c24880f
SHA1

f7c61922b036368401a96049e4e6899b75d3776b
SHA256

e466853b2e31dee3763bdbb2f861c401e2cbebd5ede0aa6395b8864e67e94ded
SHA512

04cb1b5cf498faae150be07aab50ddddf47cb26e4d72616d5f6e3b702ee5859b76d7dcad3774596552c6533ab9da6b729de906e70a3d35971bb0df0f7f428a91
SSDEEP

98304:YLwwCJAPyleuzK9vYNzAg+qgEXEjRM/QzY:YLwpxlne4zAtqgrCIz

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b045791c670c66600b7814d04c24880f

Files

b045791c670c66600b7814d04c24880f
.exe windows:4 windows x86 arch:x86

4917efad25241f676a28f47ec20035ba

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCurrentThreadId
GetCurrentProcess
GetCurrentProcessId
SetUnhandledExceptionFilter
GetModuleHandleW
TerminateProcess
GetTickCount
FreeLibrary
MultiByteToWideChar
SetLastError
GetStdHandle
GetStartupInfoW
RaiseException
SetEvent
GetACP
GetFileType
TlsGetValue
GetModuleHandleA
InitializeCriticalSection
HeapReAlloc
HeapSetInformation
LoadLibraryW
GetCPInfo
TlsFree
GetFileAttributesW
GetStringTypeW
RtlUnwind
LCMapStringW
GetOEMCP
SetStdHandle
FreeEnvironmentStringsW
IsValidCodePage
FindFirstFileW
DeleteFileW
VirtualAlloc
GetCommandLineA
DecodePointer
ReleaseMutex
OutputDebugStringW
EncodePointer
lstrlenW
GetModuleHandleExW
LoadResource
UnmapViewOfFile
GetExitCodeProcess

user32

LoadStringW
ShowWindow
DestroyWindow
DefWindowProcW
MessageBoxW
PostQuitMessage
CreateWindowExW
GetDC
GetWindowRect
SetWindowPos
EndDialog
SetWindowTextW
SetTimer
SetForegroundWindow
EndPaint
BeginPaint
ScreenToClient
InvalidateRect
GetWindow

Sections

.idata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 612KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 3.4MB - Virtual size: 3.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.text
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4917efad25241f676a28f47ec20035ba

Headers

File Characteristics

Imports

kernel32

user32

Sections

.idata Size: 2KB - Virtual size: 1KB

.data Size: - Virtual size: 612KB

.rdata Size: 3.4MB - Virtual size: 3.4MB

.text Size: 6KB - Virtual size: 6KB

.idata
Size: 2KB - Virtual size: 1KB

.data
Size: - Virtual size: 612KB

.rdata
Size: 3.4MB - Virtual size: 3.4MB

.text
Size: 6KB - Virtual size: 6KB