cda4974da52bceed7ee827b5d2c24f3d

General

Target

cda4974da52bceed7ee827b5d2c24f3d
Size

3.4MB
MD5

cda4974da52bceed7ee827b5d2c24f3d
SHA1

f704a2258e415421f761f74916495447250bb3bb
SHA256

e9a5b969ea524f2bdefb345c70741b418b92bfbeba97c159d253dffdebaa05ac
SHA512

09657666edfc648698fb2cba6bd39235231376841f4695bbbac42e4023cf272cabf758d04f7ac3ad729253d6c70d3f332542d313446d83ed8c7bdb09d7668f4b
SSDEEP

98304:LkZnStkgSlPadrSh6UcqqPycQwfnZ42R1JCacB4kX0:LkopSUw8XPjZBRoDtX0

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
cda4974da52bceed7ee827b5d2c24f3d

Files

cda4974da52bceed7ee827b5d2c24f3d
.exe windows:4 windows x86 arch:x86

dda0a481ccd2912ead569672e225f069

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLastError
GetCurrentProcess
GetSystemTimeAsFileTime
SetUnhandledExceptionFilter
GetModuleHandleW
GetProcAddress
TerminateProcess
Sleep
WideCharToMultiByte
SetLastError
HeapAlloc
LocalFree
LeaveCriticalSection
WriteFile
WaitForSingleObject
CreateFileW
GetModuleFileNameW
FindClose
SetEvent
FormatMessageW
GetFileType
InitializeCriticalSection
FlushFileBuffers
TlsSetValue
CreateEventW
TlsAlloc
HeapSize
LoadLibraryW
LoadLibraryExW
CompareStringW
GetStringTypeW
LCMapStringW
GetModuleFileNameA
SetStdHandle
FindFirstFileW
GetCommandLineA
ResetEvent
GetVersionExW
ReleaseMutex
OutputDebugStringW
EncodePointer
VirtualFree
CreateDirectoryW
GetFullPathNameW
LoadResource
GetExitCodeProcess

user32

TranslateMessage
LoadStringW
DispatchMessageW
ShowWindow
DefWindowProcW
MessageBoxW
PostQuitMessage
CreateWindowExW
GetWindowLongW
GetDC
GetWindowRect
SendMessageW
GetClientRect
SetWindowPos
LoadIconW
SetForegroundWindow
BeginPaint
SetCursor
KillTimer
InvalidateRect
RegisterClassW
EnableMenuItem
GetKeyState
CharUpperW
ClientToScreen

Sections

.rdata
Size: 3.4MB - Virtual size: 3.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.text
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 612KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

dda0a481ccd2912ead569672e225f069

Headers

File Characteristics

Imports

kernel32

user32

Sections

.rdata Size: 3.4MB - Virtual size: 3.4MB

.text Size: 6KB - Virtual size: 6KB

.data Size: - Virtual size: 612KB

.idata Size: 2KB - Virtual size: 1KB

.rdata
Size: 3.4MB - Virtual size: 3.4MB

.text
Size: 6KB - Virtual size: 6KB

.data
Size: - Virtual size: 612KB

.idata
Size: 2KB - Virtual size: 1KB