fd56dc23ba91dab09a34f5ed8b2fe735

General

Target

fd56dc23ba91dab09a34f5ed8b2fe735
Size

3.4MB
MD5

fd56dc23ba91dab09a34f5ed8b2fe735
SHA1

7068d1ef670a23eebcf7c82b084ca09f9d14da06
SHA256

a45d601f830f4018701ed5a3c0d405e674a4e3031d4be129d06e0059ef854ada
SHA512

a1f5ef9694f93aa3155f0712e71140183b2924af27793a1d8e3ed88c48353407751b8bc54f82ae9d272cea7804f94c8045006d87c323b7e518efe9a5eba421e6
SSDEEP

49152:ZYeOkp72Ukq6SPXvhNDvzF6gn3XfBsQxGHpg4azDPqvCd/5Au/yQi8RIX5u92wkS:qePOSP/LvzF683ZtPzDbBciIYUS

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fd56dc23ba91dab09a34f5ed8b2fe735

Files

fd56dc23ba91dab09a34f5ed8b2fe735
.exe windows:4 windows x86 arch:x86

671d7602df4dc77d69de1fc2bcd19ba0

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleW
QueryPerformanceCounter
GetProcAddress
TerminateProcess
WriteFile
GetProcessHeap
GetModuleFileNameW
GetStdHandle
GetStartupInfoW
FindClose
ReadFile
GetACP
GetModuleHandleA
InitializeCriticalSection
HeapReAlloc
FlushFileBuffers
TlsSetValue
HeapSetInformation
HeapSize
LoadLibraryExW
GetCPInfo
SetFilePointer
GetStringTypeW
RtlUnwind
InitializeCriticalSectionAndSpinCount
IsProcessorFeaturePresent
FindNextFileW
IsValidCodePage
DeleteFileW
LocalAlloc
SetEndOfFile
GetVersionExW
ReleaseMutex
CreateFileA
OutputDebugStringW
GetModuleHandleExW
GetLocaleInfoW
CreateDirectoryW
UnmapViewOfFile
ExpandEnvironmentStringsW
CreateProcessW

user32

TranslateMessage
DispatchMessageW
DestroyWindow
MessageBoxW
CreateWindowExW
SetWindowLongW
GetWindowLongW
GetDlgItem
GetWindowRect
SendMessageW
SetWindowPos
EnableWindow
LoadCursorW
GetParent
SetWindowTextW
SetTimer
LoadIconW
SetForegroundWindow
EndPaint
BeginPaint
ScreenToClient
KillTimer
EnableMenuItem
GetWindow
GetWindowTextW
GetKeyState
MessageBoxA
CharUpperW

Sections

.text
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 612KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 3.4MB - Virtual size: 3.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

671d7602df4dc77d69de1fc2bcd19ba0

Headers

File Characteristics

Imports

kernel32

user32

Sections

.text Size: 6KB - Virtual size: 6KB

.idata Size: 2KB - Virtual size: 1KB

.data Size: - Virtual size: 612KB

.rdata Size: 3.4MB - Virtual size: 3.4MB

.text
Size: 6KB - Virtual size: 6KB

.idata
Size: 2KB - Virtual size: 1KB

.data
Size: - Virtual size: 612KB

.rdata
Size: 3.4MB - Virtual size: 3.4MB