a2a4147d7f25ba1fcdb2a8ed1682ca7f[.]exe

Sharing

Copy URL

Twitter E-mail

General

Target

a2a4147d7f25ba1fcdb2a8ed1682ca7f.exe
Size

3.6MB
MD5

a2a4147d7f25ba1fcdb2a8ed1682ca7f
SHA1

7d2cd83dc5e4c572bc1e620cfbf8faed735768a6
SHA256

806983ead178321cb34b029cb42f76a6a995a4fdfb2bbea72e66eaf55e09a4f6
SHA512

ad8a7bd5a20b4e7cc1c8231e1ad225d3f3abd1f0f46c4739e78134f9ccdde277fd1cf4f70158f9869f238ea5ab7510c5978fb507cae50671e98e025a1ce68cd1
SSDEEP

49152:FKyiLXe0aMlubRCpexZFK42vSLEuJ6tDLVpmGYiCmj4p5gfVD0UFE6wWvHwQ8o3V:/iZaMluqeKvkMHV3Yi7/VvN8yIP

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a2a4147d7f25ba1fcdb2a8ed1682ca7f.exe

Files

a2a4147d7f25ba1fcdb2a8ed1682ca7f.exe
.exe windows:6 windows x86 arch:x86

b6a487605564429f06bfc49147a7f553

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetVersionExW
HeapAlloc
HeapFree
ExitProcess
LoadLibraryA
GetModuleHandleA
GetProcAddress

user32

GetSystemMetrics

gdi32

CreateCompatibleBitmap

advapi32

RegCloseKey

shell32

SHGetFolderPathA

wininet

HttpOpenRequestA

gdiplus

GdiplusStartup

ws2_32

closesocket

Sections

.text
Size: - Virtual size: 330KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: - Virtual size: 71KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.vmpƒ@�
Size: - Virtual size: 1.1MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.vmpƒ@�
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.vmpƒ@�
Size: 3.4MB - Virtual size: 3.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.reloc
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 152KB - Virtual size: 1.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b6a487605564429f06bfc49147a7f553

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shell32

wininet

gdiplus

ws2_32

Sections

.text Size: - Virtual size: 330KB

.rdata Size: - Virtual size: 71KB

.data Size: - Virtual size: 17KB

.vmpƒ@� Size: - Virtual size: 1.1MB

.vmpƒ@� Size: 1KB - Virtual size: 1KB

.vmpƒ@� Size: 3.4MB - Virtual size: 3.4MB

.reloc Size: 7KB - Virtual size: 6KB

.rsrc Size: 152KB - Virtual size: 1.3MB

.text
Size: - Virtual size: 330KB

.rdata
Size: - Virtual size: 71KB

.data
Size: - Virtual size: 17KB

.vmpƒ@�
Size: - Virtual size: 1.1MB

.vmpƒ@�
Size: 1KB - Virtual size: 1KB

.vmpƒ@�
Size: 3.4MB - Virtual size: 3.4MB

.reloc
Size: 7KB - Virtual size: 6KB

.rsrc
Size: 152KB - Virtual size: 1.3MB