2fbacc7f1950727255c1d82a6e66d4f1

General

Target

2fbacc7f1950727255c1d82a6e66d4f1
Size

42KB
MD5

2fbacc7f1950727255c1d82a6e66d4f1
SHA1

5ffb46331d803144c7e47547f55cdc9b98599594
SHA256

da476d432ba387bc9c94cdda8aa6c319abea90eea64b1ab9c1ee861e5e7a68b4
SHA512

bc7cbe66f6b50e04cb249a2c86772e19d36bc4c5b85a72c41461b6422e598e63dbb470d86bfcc2daead49bcd0be185151028688533a4c110ec9b2ae1abf2d112
SSDEEP

768:QPbnFVe7xXtM0rHBgIeiyEGmZdcA4klU2Vp0jv1b+lToIvZ3U+SI:InFEtXSkhzjGmZ6djR+lToIviPI

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/sdgundamext.exe

Files

2fbacc7f1950727255c1d82a6e66d4f1
.zip
sdgundamext.c
sdgundamext.exe
.exe windows:4 windows x86 arch:x86

329188b255a0f9579206df4dcd4cffca

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

DeleteCriticalSection
EnterCriticalSection
ExitProcess
FindClose
FindFirstFileA
FindFirstFileExA
FindNextFileA
GetLastError
GetModuleHandleA
GetProcAddress
GetSystemTimeAsFileTime
GetVersionExA
InitializeCriticalSection
LeaveCriticalSection
MultiByteToWideChar
SetUnhandledExceptionFilter
TlsGetValue
VirtualProtect
VirtualQuery
WideCharToMultiByte

msvcrt

_chdir
_close
_mkdir
_open
_read
_strdup
_stricmp
_write
__getmainargs
__p__environ
__p__fmode
__set_app_type
_cexit
_errno
_exit
_filelengthi64
_fstati64
_iob
_onexit
_setmode
_stati64
abort
atexit
calloc
exit
fclose
fflush
fgetpos
fgets
fopen
fread
free
fsetpos
fwrite
malloc
memcpy
perror
printf
puts
realloc
setbuf
signal
strchr
strcpy
strlen
strrchr
tolower
vfprintf

Sections

.text
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 80B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 172B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 32B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

329188b255a0f9579206df4dcd4cffca

Headers

File Characteristics

Imports

kernel32

msvcrt

Sections

.text Size: 42KB - Virtual size: 41KB

.data Size: 512B - Virtual size: 80B

.rdata Size: 16KB - Virtual size: 16KB

.bss Size: - Virtual size: 172B

.idata Size: 2KB - Virtual size: 1KB

.CRT Size: 512B - Virtual size: 24B

.tls Size: 512B - Virtual size: 32B

.text
Size: 42KB - Virtual size: 41KB

.data
Size: 512B - Virtual size: 80B

.rdata
Size: 16KB - Virtual size: 16KB

.bss
Size: - Virtual size: 172B

.idata
Size: 2KB - Virtual size: 1KB

.CRT
Size: 512B - Virtual size: 24B

.tls
Size: 512B - Virtual size: 32B