401ab4f2e0164bc250f413675180912c

General

Target

401ab4f2e0164bc250f413675180912c
Size

3.4MB
MD5

401ab4f2e0164bc250f413675180912c
SHA1

de008ca55bfb5d6d02f99e6cd84289bf08a59d1e
SHA256

48d4b5d2e842404bcfe3b40642bb0c70a3cd5123e74c49c34dedebf9c403be55
SHA512

3f66835f7d3666ee17c1c3bdacd1d09be1a9326deb96d315502b8b94ee6a0d8ba5d27baef3e1783c32fbaeaf7d9dac2001a83dd47b663b87bece06f687902b34
SSDEEP

98304:Ecy5FOjE3lB/tupAQ5apSOztR3+1iFNIueUrvj:E3ajE3/tupAjBztR3+4FGgbj

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
401ab4f2e0164bc250f413675180912c

Files

401ab4f2e0164bc250f413675180912c
.exe windows:4 windows x86 arch:x86

55fc95b11719f97a0577bbe44172dffa

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCurrentProcess
SetUnhandledExceptionFilter
GetModuleHandleW
CloseHandle
TerminateProcess
UnhandledExceptionFilter
FreeLibrary
MultiByteToWideChar
SetLastError
LeaveCriticalSection
EnterCriticalSection
CreateFileW
GetModuleFileNameW
GetStdHandle
FindClose
ReadFile
RaiseException
InitializeCriticalSection
FlushFileBuffers
TlsSetValue
TlsAlloc
HeapSize
LoadLibraryW
CreateThread
SetFilePointer
GetStringTypeW
RtlUnwind
LCMapStringW
GetOEMCP
SetStdHandle
IsProcessorFeaturePresent
FindNextFileW
FindFirstFileW
DeleteFileW
VirtualAlloc
GetConsoleCP
LocalAlloc
GetCommandLineA
SetEndOfFile
ResetEvent
GetVersionExW
ReleaseMutex
CreateFileA
GetFileSize
VirtualFree
lstrlenW
LoadLibraryA
CreateDirectoryW
GetFullPathNameW

user32

ReleaseDC
DefWindowProcW
MessageBoxW
SetWindowLongW
GetWindowLongW
GetMessageW
GetDlgItem
GetWindowRect
PostMessageW
SendMessageW
EnableWindow
IsWindow
LoadCursorW
SetWindowTextW
SetForegroundWindow
PeekMessageW
KillTimer
InvalidateRect
RegisterClassW
EnableMenuItem
GetWindow
SystemParametersInfoW
CharUpperW
ClientToScreen

Sections

.text
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3.4MB - Virtual size: 3.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 612KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

55fc95b11719f97a0577bbe44172dffa

Headers

File Characteristics

Imports

kernel32

user32

Sections

.text Size: 6KB - Virtual size: 6KB

.rdata Size: 3.4MB - Virtual size: 3.4MB

.idata Size: 2KB - Virtual size: 1KB

.data Size: - Virtual size: 612KB

.text
Size: 6KB - Virtual size: 6KB

.rdata
Size: 3.4MB - Virtual size: 3.4MB

.idata
Size: 2KB - Virtual size: 1KB

.data
Size: - Virtual size: 612KB