1dec69b6ec2ce2b8b0bfe2b5513f3200

General

Target

1dec69b6ec2ce2b8b0bfe2b5513f3200
Size

3.4MB
MD5

1dec69b6ec2ce2b8b0bfe2b5513f3200
SHA1

93497428e84be3570ad3bd1ffe04bdccbe536d7f
SHA256

b1e6eb6a9fc3d0e4e88793c5758a964259a526b376a19a60d851aeb7b0571312
SHA512

33b85619a6c3cf1e52ade27410d9f9f131f41c12bfa027e9fa560e751f8e3729ce6a73c2ea4c15c4a70fc5b0588604710c668e2c1f0a197a2d94d9a35b89f5e1
SSDEEP

49152:5Q0D1O/aNwL/yYEbGAREegvklbC7M1kV7Iazi490LTn7KrIFXTY/lM/:vD1TNwL/yYYGAqXUCay7Bmw03n7bh/

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1dec69b6ec2ce2b8b0bfe2b5513f3200

Files

1dec69b6ec2ce2b8b0bfe2b5513f3200
.exe windows:4 windows x86 arch:x86

45947c5de196f495dc49bf1fd2f3fbd0

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetSystemTimeAsFileTime
CloseHandle
TerminateProcess
FreeLibrary
MultiByteToWideChar
WideCharToMultiByte
HeapFree
LocalFree
DeleteCriticalSection
WriteFile
CreateFileW
GetStdHandle
GetCommandLineW
FindClose
ReadFile
RaiseException
FormatMessageW
GetFileType
TlsGetValue
InitializeCriticalSection
TlsSetValue
CreateEventW
LoadLibraryW
GetCPInfo
GetStringTypeW
LCMapStringW
FreeEnvironmentStringsW
IsProcessorFeaturePresent
FindFirstFileW
LocalAlloc
GetCommandLineA
CreateFileA
GetFileSize
LoadLibraryA
GetModuleHandleExW
GetFullPathNameW
GetExitCodeProcess
ExpandEnvironmentStringsW
CreateProcessW

user32

DispatchMessageW
ShowWindow
MessageBoxW
PostQuitMessage
GetWindowLongW
GetSystemMetrics
GetWindowRect
PostMessageW
SetWindowPos
EnableWindow
GetParent
SetWindowTextW
SetTimer
LoadIconW
SetFocus
SetForegroundWindow
BeginPaint
GetWindow
SystemParametersInfoW
GetKeyState

Sections

.rdata
Size: 3.4MB - Virtual size: 3.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.text
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 612KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

45947c5de196f495dc49bf1fd2f3fbd0

Headers

File Characteristics

Imports

kernel32

user32

Sections

.rdata Size: 3.4MB - Virtual size: 3.4MB

.text Size: 6KB - Virtual size: 6KB

.data Size: - Virtual size: 612KB

.idata Size: 2KB - Virtual size: 1KB

.rdata
Size: 3.4MB - Virtual size: 3.4MB

.text
Size: 6KB - Virtual size: 6KB

.data
Size: - Virtual size: 612KB

.idata
Size: 2KB - Virtual size: 1KB