130111fc053a16dbde60e14875b0fb93

General

Target

130111fc053a16dbde60e14875b0fb93
Size

486KB
MD5

130111fc053a16dbde60e14875b0fb93
SHA1

a6edcb07317a29d422fa3b7ebd1b00f0b3797200
SHA256

c61bb0b9e44382d662c7d4c01d9109222827928921fd64b4fd8ef30d60d96ab7
SHA512

cb4ccf4a6b2dbe39afc825beeed1a3332cdedfec6162348da946e933b82526dfc2a69d2cc3afaf7d422a27129de763dcaf943fd09494aa690e9e9ed8df83aa5d
SSDEEP

12288:8Kh3Mm7GlCVbtt9ELnFD2MgaE763QY2Q3t4fsvlbQXtt+Ce/9ZL:V3L4CVJaQMgaE7k12c2svdQXtb8/

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
130111fc053a16dbde60e14875b0fb93

Files

130111fc053a16dbde60e14875b0fb93
.exe windows:5 windows x86 arch:x86

85329e86805d6a778dc390754003279a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LocalAlloc
UnhandledExceptionFilter
GetCurrentProcess
InitializeCriticalSection
VirtualAlloc
CloseHandle
FreeLibrary
lstrcmpiW
UnhandledExceptionFilter
GetCurrentProcessId
MultiByteToWideChar
lstrcmpiW
CloseHandle
Sleep
LocalFree
GetCurrentProcess
GetModuleFileNameW
GetModuleHandleA
GetCurrentProcess
lstrlenA
InterlockedExchange
UnhandledExceptionFilter
CloseHandle
GetCurrentProcessId
LocalAlloc
LoadLibraryW
HeapDestroy
HeapAlloc
GetProcAddress
InterlockedIncrement
GetLastError
FreeLibrary
GetModuleFileNameA
GetModuleHandleA
CloseHandle
HeapAlloc
HeapAlloc
LeaveCriticalSection
CloseHandle
DeleteCriticalSection
GetLastError
UnhandledExceptionFilter
GetTickCount
GetVersionExA
FreeLibrary
GetVersionExA
CreateThread
CreateFileW
CreateThread
LeaveCriticalSection
InterlockedIncrement

user32

LoadStringW
DefWindowProcW
GetParent
SendMessageW
SetForegroundWindow
GetSystemMetrics
LoadStringW
DestroyWindow
GetSystemMetrics
SetFocus
GetClientRect
SetWindowTextW
SetWindowLongW
DefWindowProcW
GetWindowLongW
SetCursor
GetWindowLongW
DestroyWindow
LoadIconW
GetSysColor
GetSystemMetrics
SendMessageW
PostMessageW
GetParent
TranslateMessage
PeekMessageW
GetSysColor
ShowWindow
IsDlgButtonChecked
DialogBoxParamW
LoadIconW
GetFocus
GetSysColor
IsWindow
SetCursor
GetSysColor
SendDlgItemMessageW
EndDialog
SetDlgItemTextW
LoadIconW
GetSysColor
SendDlgItemMessageW
PostMessageW
GetWindowLongW
PostQuitMessage
GetWindowLongW
EndPaint
CharNextW
DispatchMessageW
SetCursor
LoadIconW
TranslateMessage
SetTimer
SetTimer

Sections

.text
Size: 481KB - Virtual size: 972KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

85329e86805d6a778dc390754003279a

Headers

File Characteristics

Imports

kernel32

user32

Sections

.text Size: 481KB - Virtual size: 972KB

.data Size: 512B - Virtual size: 4KB

.rdata Size: 3KB - Virtual size: 4KB

.rsrc Size: 1024B - Virtual size: 4KB

.text
Size: 481KB - Virtual size: 972KB

.data
Size: 512B - Virtual size: 4KB

.rdata
Size: 3KB - Virtual size: 4KB

.rsrc
Size: 1024B - Virtual size: 4KB