4accbaff446c76713249e04e2de5e7e8

Sharing

Copy URL Twitter E-mail

General

Target

4accbaff446c76713249e04e2de5e7e8
Size

273KB
MD5

4accbaff446c76713249e04e2de5e7e8
SHA1

1c2a59773e808d0f1e6f1c0260c3328668434610
SHA256

e180cfec500cbded1ff55f96d437b73d52c7a0ba54372806da0210e5eb6ec359
SHA512

a142f21996e53e9d91946718cbc4d7ab4b57c1fc7d9eac9e2c553f77a03dd2e70ea2e81307b4f6fe985c1c5a0abdabf2dd624389b14a371658d45791f797a645
SSDEEP

3072:dnYOY7aj3GtIzIG/Dz1qFGnq0UXmI38kd6zbwF2S8Oo7vCOcpQTQMA7odU6XP3sZ:dnYOY7ajWto/1VSnFwr

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4accbaff446c76713249e04e2de5e7e8

Files

4accbaff446c76713249e04e2de5e7e8
.exe windows:1 windows x86 arch:x86

59890a8f0d0f9ec102a51a09bf480fad

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ExitProcess
RtlUnwind
UnhandledExceptionFilter
GetModuleFileNameA
GetLocalTime
GetACP
GetOEMCP
GetCPInfo
GetStdHandle
GetPrivateProfileStringA
GetVersion
GetCommandLineA
GetLastError
GetTimeZoneInformation
WideCharToMultiByte
GetProcAddress
MultiByteToWideChar
SetEnvironmentVariableA
GetCurrentThreadId
lstrlenA
GetEnvironmentStrings
GetStartupInfoA
GetModuleHandleA
WinExec
GetFileType
VirtualFree
GetTickCount
VirtualAlloc

user32

ShowWindow
GetDC
MessageBoxA
wsprintfA
SetActiveWindow
GetSystemMetrics

winmm

waveOutGetNumDevs
sndPlaySoundA

gdi32

GetDeviceCaps

tl221mn

ord125
ord131
ord127
ord232
ord168
ord176
ord146
ord240
ord227
ord174
ord130
ord243
ord233
ord140
ord133
ord167
ord184
ord156
ord180
ord173
ord129
ord158
ord241
ord69
ord225
ord136
ord148
ord138
ord134
ord137

sv221mn

ord1379
ord1354
ord1523
ord1461
ord1274
ord56
ord2200
ord1621
ord1252
ord85
ord82
ord1619
ord2211
ord2204
ord105
ord39
ord35
ord101
ord1026
ord1040
ord1672
ord2115
ord1039
ord1849
ord1776
ord1850
ord2116
ord2121
ord2118
ord1663
ord93
ord1666
ord2015
ord1552
ord1884
ord1551
ord1909
ord1905
ord1871
ord1831
ord1876
ord1864
ord1837
ord1868
ord1866
ord1840
ord2085
ord1526
ord1359
ord1364
ord1550
ord1775
ord1646
ord1773
ord1705
ord1700
ord1699
ord1543
ord1546
ord1701
ord2088
ord1649
ord1855
ord1928
ord1969
ord1877
ord1863
ord1865
ord1867
ord1961
ord2297
ord2282
ord2140
ord1971
ord1587
ord1822
ord2089
ord2087
ord1870
ord54
ord46
ord2125
ord2131
ord2278
ord2136
ord2296
ord1956
ord1970
ord2176
ord2166
ord2272
ord1499
ord1355
ord1381
ord1375
ord1373
ord1395
ord1374
ord1394
ord1391
ord1577
ord1915
ord1823
ord1843
ord1844
ord1927
ord1885
ord1851
ord1838
ord1417
ord1273
ord1706
ord1533
ord1506
ord1491
ord1474
ord1513
ord1353
ord1845
ord1908
ord1658
ord1783
ord1057
ord1642
ord1055
ord1627
ord99
ord1620
ord76
ord102
ord1622
ord92
ord1660
ord1492
ord1504
ord1581
ord2120
ord2117
ord2111
ord1579
ord1578
ord1586
ord1505
ord1930
ord1917
ord2165
ord1457
ord2134
ord2109
ord1623
ord1427
ord1986
ord1999
ord1983
ord1624
ord90
ord2244
ord2264
ord2175
ord1841
ord1826
ord1832
ord2045
ord2027
ord2127
ord2261
ord2029
ord2028
ord2039
ord2018
ord2034
ord1862
ord2024
ord2259
ord1028
ord1053
ord1029
ord1048
ord1025
ord1022

advapi32

RegCloseKey
RegCreateKeyExA
RegQueryValueExA
RegSetValueExA
RegDeleteValueA

Sections

.text
Size: 46KB - Virtual size: 46KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 1KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 54B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 193KB - Virtual size: 193KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

59890a8f0d0f9ec102a51a09bf480fad

Headers

File Characteristics

Imports

kernel32

user32

winmm

gdi32

tl221mn

sv221mn

advapi32

Sections

.text Size: 46KB - Virtual size: 46KB

.bss Size: - Virtual size: 1KB

.rdata Size: 1KB - Virtual size: 1KB

.data Size: 4KB - Virtual size: 4KB

.idata Size: 3KB - Virtual size: 2KB

.edata Size: 512B - Virtual size: 54B

.rsrc Size: 193KB - Virtual size: 193KB

.reloc Size: 3KB - Virtual size: 3KB

.text
Size: 46KB - Virtual size: 46KB

.bss
Size: - Virtual size: 1KB

.rdata
Size: 1KB - Virtual size: 1KB

.data
Size: 4KB - Virtual size: 4KB

.idata
Size: 3KB - Virtual size: 2KB

.edata
Size: 512B - Virtual size: 54B

.rsrc
Size: 193KB - Virtual size: 193KB

.reloc
Size: 3KB - Virtual size: 3KB