16e65a267e674dd8aa510238c347cdca

General

Target

16e65a267e674dd8aa510238c347cdca
Size

3.4MB
MD5

16e65a267e674dd8aa510238c347cdca
SHA1

ad9eafb2f6ec3af84fc18553bcb687c6aad55ca0
SHA256

47caa71b511b737cf483ebefa2e24582a4696693c375a49a0d1954c1500b9388
SHA512

a61a947c4d803966a04eb16039cb1570eb6e3124d58fc722a5bb016a8c4c3c1620ae950def23a8c7d5ae9e18fdd8b2180f3ba994220a0f4ec462954f29d8e3c2
SSDEEP

98304:sIEkS1ueRAR1BiNsYNhX4ovwzWk1EceqOtjX4:tNWARfi1baz76cgT

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
16e65a267e674dd8aa510238c347cdca

Files

16e65a267e674dd8aa510238c347cdca
.exe windows:4 windows x86 arch:x86

b898709d12a3424115a046b327374225

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLastError
GetCurrentProcess
GetCurrentProcessId
GetSystemTimeAsFileTime
GetProcAddress
CloseHandle
TerminateProcess
GetTickCount
FreeLibrary
MultiByteToWideChar
WideCharToMultiByte
DeleteCriticalSection
EnterCriticalSection
CreateFileW
ExitProcess
GetModuleFileNameW
GetStdHandle
IsDebuggerPresent
GetCommandLineW
ReadFile
RaiseException
SetEvent
FormatMessageW
GetFileType
InitializeCriticalSection
GetConsoleMode
TlsSetValue
CreateEventW
TlsAlloc
HeapSetInformation
WriteConsoleW
LoadLibraryW
CreateThread
GetCPInfo
TlsFree
GetFileAttributesW
GetStringTypeW
LCMapStringW
GetModuleFileNameA
FreeEnvironmentStringsW
FindFirstFileW
GetCommandLineA
DecodePointer
ReleaseMutex
GetFileSize
VirtualFree
LoadLibraryA
GetLocaleInfoW
LoadResource
ExpandEnvironmentStringsW
CreateProcessW

user32

ShowWindow
DestroyWindow
ReleaseDC
MessageBoxW
CreateWindowExW
SetWindowLongW
GetMessageW
GetDlgItem
GetDC
SendMessageW
GetClientRect
GetParent
EndDialog
SetTimer
LoadIconW
BeginPaint
ScreenToClient
SetCursor
KillTimer
RegisterClassW
EnableMenuItem
MessageBoxA
ClientToScreen

Sections

.rdata
Size: 3.4MB - Virtual size: 3.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 612KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b898709d12a3424115a046b327374225

Headers

File Characteristics

Imports

kernel32

user32

Sections

.rdata Size: 3.4MB - Virtual size: 3.4MB

.idata Size: 2KB - Virtual size: 1KB

.data Size: - Virtual size: 612KB

.text Size: 6KB - Virtual size: 6KB

.rdata
Size: 3.4MB - Virtual size: 3.4MB

.idata
Size: 2KB - Virtual size: 1KB

.data
Size: - Virtual size: 612KB

.text
Size: 6KB - Virtual size: 6KB