af7f76c1247d44e8127f55fbed43fe3d

Sharing

Copy URL Twitter E-mail

General

Target

af7f76c1247d44e8127f55fbed43fe3d
Size

2.0MB
MD5

af7f76c1247d44e8127f55fbed43fe3d
SHA1

9edc0cc94f7751090f9b72f915b89208b7a45235
SHA256

5ad93b1cadff84b364494fb474da7f7530b44af4922f1950b5f3ed49c9785778
SHA512

81c401d3c6cae0a4b6de61786d1a0c5f7bf5106480725d627a3239c79d5139d349aa7a925eabd0371b604653e4b2d394bc7aab99e546d73a3bd09a05fe1a5c94
SSDEEP

24576:rqUJwxkNjN8WR6d5xOtxEuTaF4FN+YCwdeCbz0tn:mUJAkJZ6d5xOAuTy4FN+Dt

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
af7f76c1247d44e8127f55fbed43fe3d

Files

af7f76c1247d44e8127f55fbed43fe3d
.exe windows:4 windows x64 arch:x64

59db241a514f19be04cc47bd80c44884

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DEBUG_STRIPPED

Imports

winmm

timeEndPeriod
timeBeginPeriod

ws2_32

WSAGetOverlappedResult

kernel32

WriteFile
WriteConsoleW
WaitForSingleObject
VirtualFree
VirtualAlloc
SwitchToThread
SetWaitableTimer
SetUnhandledExceptionFilter
SetProcessPriorityBoost
SetEvent
SetErrorMode
SetConsoleCtrlHandler
LoadLibraryA
LoadLibraryW
GetSystemInfo
GetStdHandle
GetQueuedCompletionStatus
GetProcessAffinityMask
GetProcAddress
GetEnvironmentStringsW
GetConsoleMode
FreeEnvironmentStringsW
ExitProcess
DuplicateHandle
CreateThread
CreateEventA
CloseHandle
AddVectoredExceptionHandler

Sections

.text
Size: 1.3MB - Virtual size: 1.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 69KB - Virtual size: 185KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

/4
Size: 512B - Virtual size: 437B

IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/18
Size: 56KB - Virtual size: 55KB

IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/30
Size: 63KB - Virtual size: 62KB

IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/43
Size: 36KB - Virtual size: 35KB

IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/59
Size: 37KB - Virtual size: 37KB

IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/75
Size: 512B - Virtual size: 45B

IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/94
Size: 337KB - Virtual size: 336KB

IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/106
Size: 19KB - Virtual size: 18KB

IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.idata
Size: 1024B - Virtual size: 988B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.symtab
Size: 122KB - Virtual size: 122KB

IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

59db241a514f19be04cc47bd80c44884

Headers

File Characteristics

Imports

winmm

ws2_32

kernel32

Sections

.text Size: 1.3MB - Virtual size: 1.3MB

.data Size: 69KB - Virtual size: 185KB

/4 Size: 512B - Virtual size: 437B

/18 Size: 56KB - Virtual size: 55KB

/30 Size: 63KB - Virtual size: 62KB

/43 Size: 36KB - Virtual size: 35KB

/59 Size: 37KB - Virtual size: 37KB

/75 Size: 512B - Virtual size: 45B

/94 Size: 337KB - Virtual size: 336KB

/106 Size: 19KB - Virtual size: 18KB

.idata Size: 1024B - Virtual size: 988B

.symtab Size: 122KB - Virtual size: 122KB

.text
Size: 1.3MB - Virtual size: 1.3MB

.data
Size: 69KB - Virtual size: 185KB

/4
Size: 512B - Virtual size: 437B

/18
Size: 56KB - Virtual size: 55KB

/30
Size: 63KB - Virtual size: 62KB

/43
Size: 36KB - Virtual size: 35KB

/59
Size: 37KB - Virtual size: 37KB

/75
Size: 512B - Virtual size: 45B

/94
Size: 337KB - Virtual size: 336KB

/106
Size: 19KB - Virtual size: 18KB

.idata
Size: 1024B - Virtual size: 988B

.symtab
Size: 122KB - Virtual size: 122KB