57ff366db034a21f43581eb8aaa8e382

General

Target

57ff366db034a21f43581eb8aaa8e382
Size

3.4MB
MD5

57ff366db034a21f43581eb8aaa8e382
SHA1

1556225edf2d47c5b64d40e9f893d693f5ffb57f
SHA256

810be8e5778fc0863195de2f9c8d92e02fd9ec1f46ab323ae50a9350c58b0c11
SHA512

4aff2955ac80cd5d5ed5a43caaa4f148ff20b8fa409a3bd759d4bdb0bdd5c59bfb4d91d6230a0aeb95b4ebc06065e48d97e5c482797983b1cfd514f792afcf45
SSDEEP

98304:0jNVLQgudU/r4czcGyLTRc46rTmYAm1xsZu8s2p:i1udUz4WaLTRc4gAm1z32p

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
57ff366db034a21f43581eb8aaa8e382

Files

57ff366db034a21f43581eb8aaa8e382
.exe windows:4 windows x86 arch:x86

3cbd97e46f575f5bd6f5765a275f81fe

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCurrentThreadId
GetSystemTimeAsFileTime
GetModuleHandleW
GetProcAddress
GetTickCount
MultiByteToWideChar
WideCharToMultiByte
SetLastError
LeaveCriticalSection
WriteFile
GetProcessHeap
GetModuleFileNameW
GetStdHandle
IsDebuggerPresent
FindClose
ReadFile
SetEvent
FormatMessageW
GetFileType
TlsGetValue
GetModuleHandleA
GetConsoleMode
TlsSetValue
CreateEventW
HeapSetInformation
HeapSize
WriteConsoleW
SetFilePointer
CompareStringW
GetStringTypeW
InitializeCriticalSectionAndSpinCount
GetOEMCP
SetStdHandle
IsProcessorFeaturePresent
IsValidCodePage
FindFirstFileW
VirtualAlloc
GetConsoleCP
LocalAlloc
DecodePointer
GetVersionExW
CreateFileA
lstrlenW
LoadLibraryA
GetLocaleInfoW
UnmapViewOfFile
GetExitCodeProcess
CreateProcessW

user32

TranslateMessage
LoadStringW
DispatchMessageW
DestroyWindow
DefWindowProcW
PostQuitMessage
CreateWindowExW
SetWindowLongW
GetWindowLongW
GetDlgItem
GetSystemMetrics
GetClientRect
SetWindowPos
EnableWindow
IsWindow
LoadCursorW
GetParent
SetTimer
LoadIconW
GetSysColor
PeekMessageW
KillTimer
GetWindow
GetWindowTextW
GetKeyState
MessageBoxA
CharUpperW
ClientToScreen

Sections

.rdata
Size: 3.4MB - Virtual size: 3.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 612KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3cbd97e46f575f5bd6f5765a275f81fe

Headers

File Characteristics

Imports

kernel32

user32

Sections

.rdata Size: 3.4MB - Virtual size: 3.4MB

.idata Size: 2KB - Virtual size: 1KB

.data Size: - Virtual size: 612KB

.text Size: 6KB - Virtual size: 6KB

.rdata
Size: 3.4MB - Virtual size: 3.4MB

.idata
Size: 2KB - Virtual size: 1KB

.data
Size: - Virtual size: 612KB

.text
Size: 6KB - Virtual size: 6KB