37a383ae0aae745b22191f8bd60c2fe9

General

Target

37a383ae0aae745b22191f8bd60c2fe9
Size

52KB
MD5

37a383ae0aae745b22191f8bd60c2fe9
SHA1

0297c272899c745ac72c93d6a1628a5ec809359b
SHA256

a3d03264e2e196a4bb99fcfc9ec4a06fe6287e4d6cc969144e2af3ebb9abc8b0
SHA512

7ab2dd214a491b2ba3121c88b9523e5ff16256556aad60d07e675995a6b0338c4cceaf1a52395a86681eb7493b3391f0a371a963dbff06a36cfa7bf5b72d34b2
SSDEEP

768:7m3ZWyaK53bBSJ3Zn8lRUl/oRbsIBMbMgtxyW8RXo9MWFU:yoyaKa3Zn8laCQIdl1oJF

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
37a383ae0aae745b22191f8bd60c2fe9

Files

37a383ae0aae745b22191f8bd60c2fe9
.dll windows:4 windows x86 arch:x86

239c82c26a8cf5ef8b8da915e981b692

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

VirtualAlloc
lstrcmpiA
GetProcAddress
LoadLibraryA
VirtualFree
CreateEventA
GetCurrentThreadId
GetSystemInfo
SetErrorMode
GetCommandLineA
GetStringTypeW
GetStringTypeA
LCMapStringW
LCMapStringA
GetVersion
ExitProcess
TerminateProcess
GetCurrentProcess
HeapDestroy
HeapCreate
HeapFree
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
WriteFile
HeapAlloc
HeapReAlloc
GetCPInfo
GetACP
GetOEMCP
MultiByteToWideChar
RtlUnwind

user32

GetSystemMetrics
wsprintfA
GetForegroundWindow

Exports

Exports

p_Abort
p_Advise
p_FreeMarshalStream
p_MarshalPtrInProc
p_ModuleGetClassObject
p_ModuleInit
p_ModuleRegisterClassObjects
p_Unadvise
p_UnmarshalPtr

Sections

.text
Size: 32KB - Virtual size: 29KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

239c82c26a8cf5ef8b8da915e981b692

Headers

File Characteristics

Imports

kernel32

user32

Exports

Exports

Sections

.text Size: 32KB - Virtual size: 29KB

.rdata Size: 4KB - Virtual size: 2KB

.data Size: 4KB - Virtual size: 8KB

.rsrc Size: 4KB - Virtual size: 1KB

.reloc Size: 4KB - Virtual size: 1KB

.text
Size: 32KB - Virtual size: 29KB

.rdata
Size: 4KB - Virtual size: 2KB

.data
Size: 4KB - Virtual size: 8KB

.rsrc
Size: 4KB - Virtual size: 1KB

.reloc
Size: 4KB - Virtual size: 1KB