4a8af3bfb3f28ac2bf5e08bc575dd6ca

General

Target

4a8af3bfb3f28ac2bf5e08bc575dd6ca
Size

616KB
MD5

4a8af3bfb3f28ac2bf5e08bc575dd6ca
SHA1

b1dab1074f445786aa83c9f4f60558531d3c9e10
SHA256

cb7154856e038a20be4019603f96042a8d8849d9e69f99705d68a7456b237de5
SHA512

a31320a2ee1fb4f9ce487b9d4aac9464959c55479885a3341a49a3c7330a76aa09640fea70d75c4790fa4d09a06c47df4081e92ea2404cf03c3c77cccd5aa94d
SSDEEP

12288:hINHUr5BUYC24hjT3bz/CpGpkkcYf5qg2:h8y5BUYKXj/V0b

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4a8af3bfb3f28ac2bf5e08bc575dd6ca

Files

4a8af3bfb3f28ac2bf5e08bc575dd6ca
.exe windows:4 windows x86 arch:x86

67b8b983431abb09eb3a9379ea12cb0e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

oleaut32

SysFreeString
SysStringLen
SafeArrayPutElement
SafeArrayRedim
SafeArrayGetLBound
LoadTypeLi

gdi32

CreateFontA
UpdateColors
EnumMetaFile
GetSystemPaletteUse

user32

RemovePropW
CreateWindowStationW
IsZoomed

kernel32

VirtualFree
SetStdHandle
GetOverlappedResult
EnumDateFormatsW
WriteConsoleOutputW
MoveFileW
SetSystemTime
GetTimeZoneInformation
GetCurrentDirectoryW
TlsGetValue
OpenSemaphoreW
ExitProcess
SetProcessWorkingSetSize
CreateIoCompletionPort
LocalReAlloc
UnhandledExceptionFilter
FindNextChangeNotification
FindFirstFileA
GetBinaryTypeW
PrepareTape
GetConsoleCursorInfo
ReadFileScatter
LeaveCriticalSection
GetStartupInfoA
QueryDosDeviceW
CompareStringA
GetProcessTimes
LocalLock
LocalSize

msvcrt

_strlwr
wcscmp
strncmp
_ultoa
time
_wcsnset
fwscanf
strrchr
atoi
_fstat
_wgetcwd
_mbsstr
atof
_unlink
_tempnam
_mbctolower
_strtime
fseek
iswalpha
puts
_sopen
system
strcoll
_strnicmp
clock

Sections

.text
Size: 311KB - Virtual size: 310KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 284KB - Virtual size: 284KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

67b8b983431abb09eb3a9379ea12cb0e

Headers

File Characteristics

Imports

oleaut32

gdi32

user32

kernel32

msvcrt

Sections

.text Size: 311KB - Virtual size: 310KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 284KB - Virtual size: 284KB

.rsrc Size: 16KB - Virtual size: 16KB

.text
Size: 311KB - Virtual size: 310KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 284KB - Virtual size: 284KB

.rsrc
Size: 16KB - Virtual size: 16KB