d1e071f0ae5a3159c9e0f33e21846f60

General

Target

d1e071f0ae5a3159c9e0f33e21846f60
Size

128KB
MD5

d1e071f0ae5a3159c9e0f33e21846f60
SHA1

6760f83bb3595b22bb3823a75a4eccc86ba587d6
SHA256

613de9b5cbb9322c37819ba19424f5ae3d3ccecc6967f53d6fb8901b1b4e08d2
SHA512

f84ae2e3bc9dbbfde2c59703d96cd9a1d0322fe51dbcecaad03e00d93d5e035f9a93d7fcf0772ef28f8687675d56caeb315784bf50467aa1558590f618cd231e
SSDEEP

768:A6s9yWuEeTcRA01Au3kEbiJhdms8RpTVblKAFUnAevOVfQdddjlDkr4aBMru1:7s9yWLetIcL8RpTV4AWnAezddJTaKrO

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d1e071f0ae5a3159c9e0f33e21846f60

Files

d1e071f0ae5a3159c9e0f33e21846f60
.exe windows:1 windows x86 arch:x86

1811fe4e3118dcb77efc8ae2426fa991

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
CompareStringA
CompareStringW
CreateFileA
CreateMutexA
DeleteCriticalSection
DeviceIoControl
EnterCriticalSection
ExitProcess
FlushFileBuffers
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetACP
GetCPInfo
GetCommandLineA
GetCurrentProcess
GetCurrentThreadId
GetEnvironmentStringsA
GetEnvironmentStringsW
GetEnvironmentVariableA
GetFileType
GetLastError
GetModuleFileNameA
GetModuleHandleA
GetOEMCP
GetProcAddress
GetStartupInfoA
GetStdHandle
GetStringTypeA
GetStringTypeW
GetTimeZoneInformation
GetVersion
GetVersionExA
GlobalAlloc
HeapAlloc
HeapCreate
HeapDestroy
HeapFree
HeapReAlloc
InitializeCriticalSection
InterlockedDecrement
InterlockedIncrement
LCMapStringA
LCMapStringW
LeaveCriticalSection
LoadLibraryA
LocalAlloc
LocalFree
MultiByteToWideChar
QueryDosDeviceA
ReadConsoleA
ReleaseMutex
RtlUnwind
SetEnvironmentVariableA
SetFilePointer
SetHandleCount
SetLastError
SetStdHandle
TerminateProcess
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue
VirtualAlloc
VirtualFree
WaitForSingleObject
WideCharToMultiByte
WriteConsoleA
WriteFile
lstrcmpA
lstrlenA

user32

wsprintfA

advapi32

InitializeSecurityDescriptor
SetSecurityDescriptorDacl

setupapi

SetupDiGetDeviceRegistryPropertyA
SetupDiEnumDeviceInfo
SetupDiGetClassDevsA
SetupDiGetDeviceInterfaceDetailA
SetupDiEnumDeviceInterfaces
SetupDiGetDeviceInstanceIdA
SetupDiDestroyDeviceInfoList

Sections

.flat
Size: 128KB - Virtual size: 127KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

1811fe4e3118dcb77efc8ae2426fa991

Headers

File Characteristics

Imports

kernel32

user32

advapi32

setupapi

Sections

.flat Size: 128KB - Virtual size: 127KB

.flat
Size: 128KB - Virtual size: 127KB