67d0bb833aa70de4224f8469c3f7a59f

General

Target

67d0bb833aa70de4224f8469c3f7a59f
Size

444KB
MD5

67d0bb833aa70de4224f8469c3f7a59f
SHA1

5d8a0ba87292b91dfa806eca3cb104d142447645
SHA256

e31ef7a7da18bac5b5c9ac33aaa72d9fd0d69618c67b9aefbc5839063bb63723
SHA512

0768419a84a399d7860d32322c0018e26202bc2f48280498171856255879d8abb4a411b41aa175d9bf6c93fe30778b52d315b7cf9237ae1d2b941a6a098305e8
SSDEEP

6144:1WBLrMtTiYJ1DPUsqPREaY0kIQwAfzY3mZsg60muaHboOBJjAv8pj6q0cEKi:6LG5zo+aY0ewDwsv0mxDtAaxEKi

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
67d0bb833aa70de4224f8469c3f7a59f

Files

67d0bb833aa70de4224f8469c3f7a59f
.exe windows:4 windows x86 arch:x86

77b7c6b9c65425855d26b38d3a7f5f72

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

ReleaseDC
SetWindowLongA
GetDlgItem
DispatchMessageA

kernel32

LCMapStringA
LeaveCriticalSection
WriteConsoleW
VirtualAlloc
CreateFileA
GetFileType
VirtualFree
GlobalAlloc
CreateFileW
SetLastError
UnmapViewOfFile
QueryPerformanceCounter
TerminateProcess
FormatMessageW
LocalFree
GetStringTypeW
HeapReAlloc
GetSystemDirectoryA
CloseHandle
WriteFile
InterlockedExchange
SetFilePointer
GetStringTypeA
GetFileAttributesA
WideCharToMultiByte
SetStdHandle
InterlockedCompareExchange
GetProcAddress
GetCommandLineA
FreeEnvironmentStringsW
MultiByteToWideChar
LoadLibraryExW
GetCPInfo
GetFileSize
GetLocaleInfoA
GetConsoleMode
GetEnvironmentStrings
GetCurrentProcess
DeleteCriticalSection
lstrlenW
GetFileAttributesW
GetVersionExA
TlsAlloc
ExitProcess
WaitForSingleObject
GetModuleFileNameW
lstrlenA
GetSystemInfo
GetLastError
HeapAlloc
GetModuleHandleA
GetStartupInfoA
GetVersion
UnhandledExceptionFilter
GetModuleFileNameA
FreeEnvironmentStringsA
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetCurrentThreadId
TlsSetValue
TlsGetValue
GetEnvironmentVariableA
HeapDestroy
HeapCreate
HeapFree
RtlUnwind
InterlockedDecrement
InterlockedIncrement
InitializeCriticalSection
EnterCriticalSection
GetACP
GetOEMCP
LoadLibraryA
LCMapStringW

Sections

.text
Size: 28KB - Virtual size: 26KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 380KB - Virtual size: 377KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 28KB - Virtual size: 30KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 320B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

77b7c6b9c65425855d26b38d3a7f5f72

Headers

File Characteristics

Imports

user32

kernel32

Sections

.text Size: 28KB - Virtual size: 26KB

.rdata Size: 380KB - Virtual size: 377KB

.data Size: 28KB - Virtual size: 30KB

.rsrc Size: 4KB - Virtual size: 320B

.text
Size: 28KB - Virtual size: 26KB

.rdata
Size: 380KB - Virtual size: 377KB

.data
Size: 28KB - Virtual size: 30KB

.rsrc
Size: 4KB - Virtual size: 320B