355f9e228676ef4f976af4f3616bd0c4

General

Target

355f9e228676ef4f976af4f3616bd0c4
Size

122KB
MD5

355f9e228676ef4f976af4f3616bd0c4
SHA1

51508c12d51890765bf2b65df12f067f2d2769c2
SHA256

c25129b158471384945c7ea618dff58687fa7759c16673e9aa138c4476ac8ee6
SHA512

f664e228fd18214b6a215f45f0a939fbb81457b4b63bc6cd768d3b7a67b01c5bcb0dbe795f44bad778d26f18ed7fc3aed3ef64f5b49180a2fdf471e2b56aae3a
SSDEEP

3072:RXPF8AOzXq4KTNx7wLcUT4rETRkEZSPTcTGNNLOe:RfF8AUq4+xkLQgSPT8G7LOe

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
355f9e228676ef4f976af4f3616bd0c4

Files

355f9e228676ef4f976af4f3616bd0c4
.exe windows:4 windows x86 arch:x86

83dc3f4679fca51d94aba8c0e6ec5640

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

BeginUpdateResourceA
CloseHandle
CopyFileA
CreateFileA
CreateMutexA
CreateProcessA
DeleteFileA
EndUpdateResourceA
ExpandEnvironmentStringsA
FindFirstFileA
FindNextFileA
FindResourceA
FreeLibrary
GetBinaryTypeA
GetCommandLineA
GetCurrentDirectoryA
GetDiskFreeSpaceExA
GetDriveTypeA
GetFileSize
GetFileTime
GetLastError
GetLogicalDriveStringsA
GetProcessHeap
GetTempFileNameA
GetTempPathA
GetVersion
HeapAlloc
LoadLibraryA
LoadLibraryExA
LoadResource
LockResource
MoveFileA
MoveFileExA
ReadFile
SetErrorMode
SetFileAttributesA
SetFilePointer
SetFileTime
SizeofResource
UpdateResourceA
WriteFile
lstrcatA
lstrcmpA
lstrcmpiA
lstrcpyA
lstrlenA

user32

CreateWindowExA
DefWindowProcA
DispatchMessageA
GetMessageA
PostQuitMessage
RegisterClassA
ShowWindow
TranslateMessage
UpdateWindow

winmm

timeGetTime

advapi32

RegCloseKey
RegOpenKeyExA
RegQueryValueExA
RegSetValueExA

Sections

.text
Size: 7KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

83dc3f4679fca51d94aba8c0e6ec5640

Headers

File Characteristics

Imports

kernel32

user32

winmm

advapi32

Sections

.text Size: 7KB - Virtual size: 8KB

.data Size: 512B - Virtual size: 12KB

.idata Size: 2KB - Virtual size: 4KB

.rsrc Size: 4KB - Virtual size: 4KB

.text
Size: 7KB - Virtual size: 8KB

.data
Size: 512B - Virtual size: 12KB

.idata
Size: 2KB - Virtual size: 4KB

.rsrc
Size: 4KB - Virtual size: 4KB