3ba3ba9aa512459680cbcd6a8bf12478

General

Target

3ba3ba9aa512459680cbcd6a8bf12478
Size

128KB
MD5

3ba3ba9aa512459680cbcd6a8bf12478
SHA1

36715731e24a93872d2acb098a330f43e8a42674
SHA256

cf25055e1e2e863f0e0a8e0acd4077facc92fdf5b10d62519256041737bfd966
SHA512

90cee34eec83ab8bf8654d7a9abe419918aa687a5ea7d5aadd3377034eae590604bb30e7d6f76dface34e370cda64c274b03509bbbcdbdb787c29c0a3a319f65
SSDEEP

3072:q3yxrINFc+p3DqqYOp2xyEcltDpHpnMO644a077oxsFP:qi+3DSOgxaTpHpLOgx

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3ba3ba9aa512459680cbcd6a8bf12478

Files

3ba3ba9aa512459680cbcd6a8bf12478
.exe windows:4 windows x86 arch:x86

6eed60b5a9da3a571a33b8125923b154

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

Beep
QueryPerformanceCounter
GetCurrentThreadId
GetCurrentProcessId
GetCurrentDirectoryW
FormatMessageW
GetVersionExA
TlsSetValue
DeleteAtom
ConnectNamedPipe
VirtualAlloc
DeleteFileA
FatalAppExitW
lstrcpyn
TlsFree
GetComputerNameA
lstrcatA
GetShortPathNameA
GetFileAttributesExW
GetModuleHandleA
GetLocaleInfoA
CompareStringW
MultiByteToWideChar
_llseek

user32

wsprintfA
GetDC
GetFocus
LoadCursorA
SendMessageA
SendMessageW
DispatchMessageW
DestroyWindow
PostMessageA
CharNextW
SetWindowPos
MessageBoxA
GetWindowRect
GetSysColor
SetWindowLongA
SetWindowTextA
GetDlgItemTextA
DestroyIcon
SendDlgItemMessageW
ReleaseDC
LoadIconW
SetCursor
DialogBoxParamW
GetDesktopWindow
SetForegroundWindow
EndDialog
LoadStringA
GetWindowLongA
CharPrevW
InvalidateRect
SetDlgItemInt
CharPrevA
CreateWindowExA
GetFocus
DefWindowProcA
GetDlgItemInt
LoadIconW
GetClientRect
SetTimer

Sections

.text
Size: 59KB - Virtual size: 59KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 64KB - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 1004B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 504B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6eed60b5a9da3a571a33b8125923b154

Headers

File Characteristics

Imports

kernel32

user32

Sections

.text Size: 59KB - Virtual size: 59KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 64KB - Virtual size: 84KB

.rsrc Size: 1024B - Virtual size: 1004B

.reloc Size: 512B - Virtual size: 504B

.text
Size: 59KB - Virtual size: 59KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 64KB - Virtual size: 84KB

.rsrc
Size: 1024B - Virtual size: 1004B

.reloc
Size: 512B - Virtual size: 504B