0af7b4b7c18db4bf834c5f88f9daf1fd

General

Target

0af7b4b7c18db4bf834c5f88f9daf1fd
Size

404KB
MD5

0af7b4b7c18db4bf834c5f88f9daf1fd
SHA1

65a234c4d42fad878403fa8067919ba7f5855eb3
SHA256

5c1ef763fe8dbd986e344e4faca1792a603b87e37ba163491a6ac3d5bdaf211d
SHA512

4486ead6ab71722c0a101c749ffcb444505459d209f349a53b1ccf384b1c685fa92f2ae3cca9b09c7ecaea34dc363c04c5690217f34224ed11b2797d1afd647b
SSDEEP

6144:eZbVRyqUVsg44tAUOb1y36A8z9UrTHANGRP5OY2k:WV0hD44t4sq5cTHANG37X

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0af7b4b7c18db4bf834c5f88f9daf1fd

Files

0af7b4b7c18db4bf834c5f88f9daf1fd
.exe windows:5 windows x86 arch:x86

151a6a154ababb03c9214273ea31e77f

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

HeapAlloc
LoadLibraryExW
HeapFree
GetModuleHandleW
Sleep
GetModuleFileNameW
CreateFileW
GetProcAddress
GetLocalTime
HeapWalk
WriteConsoleW
LoadLibraryW
WideCharToMultiByte
InterlockedIncrement
InterlockedDecrement
InterlockedExchange
MultiByteToWideChar
EncodePointer
DecodePointer
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
GetLastError
GetCommandLineW
HeapSetInformation
GetStartupInfoW
GetCPInfo
RaiseException
RtlUnwind
LCMapStringW
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
IsProcessorFeaturePresent
HeapCreate
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
SetLastError
GetCurrentThreadId
ExitProcess
WriteFile
GetStdHandle
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
InitializeCriticalSectionAndSpinCount
GetFileType
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
GetStringTypeW
GetLocaleInfoW
HeapSize
GetConsoleCP
GetConsoleMode
FlushFileBuffers
ReadFile
SetFilePointer
CloseHandle
GetACP
GetOEMCP
IsValidCodePage
GetUserDefaultLCID
GetLocaleInfoA
EnumSystemLocalesA
IsValidLocale
HeapReAlloc
SetStdHandle

ole32

OleUninitialize
OleInitialize
OleCreate

Sections

.text
Size: 175KB - Virtual size: 175KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 22KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 199KB - Virtual size: 198KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

151a6a154ababb03c9214273ea31e77f

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

ole32

Sections

.text Size: 175KB - Virtual size: 175KB

.rdata Size: 22KB - Virtual size: 21KB

.data Size: 6KB - Virtual size: 48KB

.rsrc Size: 199KB - Virtual size: 198KB

.text
Size: 175KB - Virtual size: 175KB

.rdata
Size: 22KB - Virtual size: 21KB

.data
Size: 6KB - Virtual size: 48KB

.rsrc
Size: 199KB - Virtual size: 198KB