fe8734cc49fba080cb568dd6e29b6b63

General

Target

fe8734cc49fba080cb568dd6e29b6b63
Size

120KB
MD5

fe8734cc49fba080cb568dd6e29b6b63
SHA1

c2bdda3c7b7c243882be800d2d16c5b3fddaa9ec
SHA256

e24fceaa84fb1b2a6a95713c08d39b6274ebb033069028c62febce1d1209e031
SHA512

8bdff3128842061b9c023fc3c875abea2e39d69717d78706467402212059da2e71ba9a398f710ca8526a511a5fef69ef3db0688702efce3fe847ba45758d5a45
SSDEEP

768:FQJeCXOykJEgTSh6odyX7rzXvKym1yhwvz6L/7B/+8q8:FQJHhkCgTVocLPXHwvzEzdTq

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fe8734cc49fba080cb568dd6e29b6b63

Files

fe8734cc49fba080cb568dd6e29b6b63
.exe windows:4 windows x86 arch:x86

72f59db26f24f87b0f54ce671b8f5c2c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetVersionExA
GetCommandLineA
GetProcAddress
HeapReAlloc
GetModuleHandleA
GetStartupInfoA
GetVersion
ExitProcess
GetCPInfo
GetACP
GetOEMCP
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
HeapDestroy
HeapCreate
VirtualFree
HeapFree
RtlUnwind
WriteFile
MultiByteToWideChar
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
HeapAlloc
VirtualAlloc
LoadLibraryA

advapi32

RegOpenKeyExA
RegCreateKeyExA
RegSetValueExA
RegCloseKey
RegDeleteValueA

sis_lib

SiSReadPortULONG
SiSWritePortULONG

Sections

.text
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 96KB - Virtual size: 100KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

72f59db26f24f87b0f54ce671b8f5c2c

Headers

File Characteristics

Imports

kernel32

advapi32

sis_lib

Sections

.text Size: 12KB - Virtual size: 12KB

.rdata Size: 4KB - Virtual size: 4KB

.data Size: 4KB - Virtual size: 4KB

.rsrc Size: 96KB - Virtual size: 100KB

.text
Size: 12KB - Virtual size: 12KB

.rdata
Size: 4KB - Virtual size: 4KB

.data
Size: 4KB - Virtual size: 4KB

.rsrc
Size: 96KB - Virtual size: 100KB