92bcecafa3977cafa683161fa931087e

General

Target

92bcecafa3977cafa683161fa931087e
Size

3.4MB
MD5

92bcecafa3977cafa683161fa931087e
SHA1

1e3c164e8ba5c225099b1663118203ae792c3645
SHA256

00bc03ebc29e8112114c17450fa85a6a8953c30a707f49b5b7d0820ba64835b0
SHA512

24f29a385f66be6fb25317a5229ce65595c9abb8fa006f1f17d9467a765e3200b89a2767645b8af58b0353e2fc04add90b642da5786d444d79157fdd34b2ad7c
SSDEEP

49152:mpLCUHQLJUqj0BOf60UF7Y6KOVHI/4QL/BsKu3DA+COJYLWwOby4Nyo/ODdJOipS:ofwN8z98kW/sX3M+COS9ObWz/z

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
92bcecafa3977cafa683161fa931087e

Files

92bcecafa3977cafa683161fa931087e
.exe windows:4 windows x86 arch:x86

bff17d487482d800cc0e60b8653ca80f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLastError
GetCurrentThreadId
GetCurrentProcess
GetModuleHandleW
GetProcAddress
CloseHandle
TerminateProcess
UnhandledExceptionFilter
MultiByteToWideChar
WideCharToMultiByte
HeapAlloc
DeleteCriticalSection
EnterCriticalSection
WriteFile
GetModuleFileNameW
GetStdHandle
ReadFile
SetEvent
GetACP
GetFileType
GetModuleHandleA
HeapReAlloc
FlushFileBuffers
TlsSetValue
TlsAlloc
HeapSetInformation
HeapSize
LoadLibraryW
LoadLibraryExW
CreateThread
SetFilePointer
RtlUnwind
LCMapStringW
GetModuleFileNameA
GetOEMCP
SetStdHandle
FreeEnvironmentStringsW
VirtualAlloc
LocalAlloc
GetCommandLineA
SetEndOfFile
ResetEvent
GetVersionExW
ReleaseMutex
CreateFileA
GetFileSize
VirtualFree
lstrlenW
LoadLibraryA
GetModuleHandleExW
GetLocaleInfoW
GetFullPathNameW
LoadResource
ExpandEnvironmentStringsW
CreateProcessW

user32

LoadStringW
DispatchMessageW
ShowWindow
PostQuitMessage
GetDC
GetWindowRect
PostMessageW
SendMessageW
GetClientRect
SetWindowPos
EnableWindow
IsWindow
GetParent
EndDialog
SetWindowTextW
SetFocus
SetForegroundWindow
BeginPaint
ScreenToClient
SetCursor
KillTimer
InvalidateRect
GetWindow
GetWindowTextW
UpdateWindow
GetKeyState
MessageBoxA

Sections

.data
Size: - Virtual size: 612KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 3.4MB - Virtual size: 3.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.text
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

bff17d487482d800cc0e60b8653ca80f

Headers

File Characteristics

Imports

kernel32

user32

Sections

.data Size: - Virtual size: 612KB

.rdata Size: 3.4MB - Virtual size: 3.4MB

.idata Size: 2KB - Virtual size: 2KB

.text Size: 6KB - Virtual size: 6KB

.data
Size: - Virtual size: 612KB

.rdata
Size: 3.4MB - Virtual size: 3.4MB

.idata
Size: 2KB - Virtual size: 2KB

.text
Size: 6KB - Virtual size: 6KB