52674eb3c9a330dcc40958a8e116e78c

General

Target

52674eb3c9a330dcc40958a8e116e78c
Size

3.4MB
MD5

52674eb3c9a330dcc40958a8e116e78c
SHA1

48dc319f8c8d20f143bab7335af118fd36426710
SHA256

ce9b2c31ae7f817ec800d5f8369354745c25b4616083c311d84a96bb151877f8
SHA512

da59bb41b29dbfc578a8fe3d3f3e3a0b99f90991ac5b2072cacb848f29dc13b7b3c01373b3e1c9ff6735a09a83df8a6eded4d8b290898eec3d40f4b5b6d86469
SSDEEP

49152:8ydcNDFM8x1xFKpefVXJkojcSWWzpzw8W0eLTjsHu+uMmTjsoIz87En2yNjlKYwz:8yGNW8xuW7TpVWX/jsQMPIEF5p

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
52674eb3c9a330dcc40958a8e116e78c

Files

52674eb3c9a330dcc40958a8e116e78c
.exe windows:4 windows x86 arch:x86

2d5596d57236ca9e095596b6dc4f4cc5

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCurrentThreadId
GetCurrentProcess
SetUnhandledExceptionFilter
GetProcAddress
TerminateProcess
Sleep
GetTickCount
FreeLibrary
MultiByteToWideChar
WideCharToMultiByte
HeapFree
HeapAlloc
DeleteCriticalSection
WriteFile
GetProcessHeap
IsDebuggerPresent
GetCommandLineW
ReadFile
SetEvent
GetACP
TlsGetValue
GetModuleHandleA
InitializeCriticalSection
GetConsoleMode
CreateEventW
TlsAlloc
HeapSize
WriteConsoleW
LoadLibraryW
TlsFree
SetFilePointer
GetFileAttributesW
RtlUnwind
GetEnvironmentStringsW
SetStdHandle
FreeEnvironmentStringsW
FindNextFileW
IsValidCodePage
FindFirstFileW
VirtualAlloc
GetConsoleCP
LocalAlloc
SetEndOfFile
GetVersionExW
ReleaseMutex
OutputDebugStringW
GetFileSize
VirtualFree
lstrlenW
LoadLibraryA
GetModuleHandleExW
GetLocaleInfoW
CreateDirectoryW
UnmapViewOfFile
CreateProcessW

user32

TranslateMessage
LoadStringW
ShowWindow
DefWindowProcW
PostQuitMessage
CreateWindowExW
GetDlgItem
GetDC
PostMessageW
GetClientRect
LoadCursorW
EndDialog
SetWindowTextW
SetTimer
LoadIconW
SetForegroundWindow
BeginPaint
ScreenToClient
SetCursor
KillTimer
EnableMenuItem
GetWindowTextW
UpdateWindow

Sections

.idata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.text
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3.4MB - Virtual size: 3.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 612KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

2d5596d57236ca9e095596b6dc4f4cc5

Headers

File Characteristics

Imports

kernel32

user32

Sections

.idata Size: 2KB - Virtual size: 1KB

.text Size: 6KB - Virtual size: 6KB

.rdata Size: 3.4MB - Virtual size: 3.4MB

.data Size: - Virtual size: 612KB

.idata
Size: 2KB - Virtual size: 1KB

.text
Size: 6KB - Virtual size: 6KB

.rdata
Size: 3.4MB - Virtual size: 3.4MB

.data
Size: - Virtual size: 612KB