528b0f053bc46f5a18c57a7767a7bdf1

General

Target

528b0f053bc46f5a18c57a7767a7bdf1
Size

3.4MB
MD5

528b0f053bc46f5a18c57a7767a7bdf1
SHA1

f55bce64f85c9b8c75b7e0ecc02bc7a080cc5d47
SHA256

eff6109c14516d61ca8cfa8b1cdd5fd64a0790447be00f1bfdc994b9a687b208
SHA512

ae8e5074fbbd99bf28e88662eecd21ff3b5a83cfd3b50966f5d40bef454e88ddcc1990240cabb6803506730525518e7b8b2ad82d0a404c650a43ba0a4995c105
SSDEEP

49152:olw0t0xGkElrZ/uvLE5oixC1ypf4kt/fiwGOHw4ICRNm39gMJAoJO7AqLi:1xHE5wvLqbxiypgkxKwTMCuGOHq+

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
528b0f053bc46f5a18c57a7767a7bdf1

Files

528b0f053bc46f5a18c57a7767a7bdf1
.exe windows:4 windows x86 arch:x86

b4d511021c819ba58e7e118b1fa65310

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCurrentProcessId
GetSystemTimeAsFileTime
SetUnhandledExceptionFilter
GetModuleHandleW
QueryPerformanceCounter
GetProcAddress
Sleep
GetTickCount
MultiByteToWideChar
LocalFree
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
GetProcessHeap
CreateFileW
GetStdHandle
GetCommandLineW
FindClose
ReadFile
RaiseException
SetEvent
GetACP
FormatMessageW
GetFileType
TlsGetValue
GetModuleHandleA
GetConsoleMode
FlushFileBuffers
TlsSetValue
WriteConsoleW
LoadLibraryW
LoadLibraryExW
CreateThread
TlsFree
GetFileAttributesW
CompareStringW
GetStringTypeW
RtlUnwind
LCMapStringW
GetModuleFileNameA
InitializeCriticalSectionAndSpinCount
GetOEMCP
IsValidCodePage
FindFirstFileW
LocalAlloc
GetCommandLineA
DecodePointer
SetEndOfFile
GetVersionExW
CreateFileA
OutputDebugStringW
GetFileSize
VirtualFree
lstrlenW
LoadLibraryA
GetModuleHandleExW
GetLocaleInfoW
GetFullPathNameW
UnmapViewOfFile
ExpandEnvironmentStringsW

user32

ShowWindow
DestroyWindow
MessageBoxW
PostQuitMessage
SetWindowLongW
GetWindowLongW
GetMessageW
GetDlgItem
GetSystemMetrics
GetDC
GetWindowRect
PostMessageW
GetClientRect
IsWindow
LoadCursorW
GetParent
EndDialog
SetWindowTextW
LoadIconW
SetFocus
PeekMessageW
EndPaint
BeginPaint
KillTimer
InvalidateRect
RegisterClassW
GetKeyState
ClientToScreen

Sections

.idata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 612KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 3.4MB - Virtual size: 3.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.text
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b4d511021c819ba58e7e118b1fa65310

Headers

File Characteristics

Imports

kernel32

user32

Sections

.idata Size: 2KB - Virtual size: 2KB

.data Size: - Virtual size: 612KB

.rdata Size: 3.4MB - Virtual size: 3.4MB

.text Size: 6KB - Virtual size: 6KB

.idata
Size: 2KB - Virtual size: 2KB

.data
Size: - Virtual size: 612KB

.rdata
Size: 3.4MB - Virtual size: 3.4MB

.text
Size: 6KB - Virtual size: 6KB