01231bc49561ac9f472928d14a2aca27

General

Target

01231bc49561ac9f472928d14a2aca27
Size

3.4MB
MD5

01231bc49561ac9f472928d14a2aca27
SHA1

372e7a10c872f2336da4c5431e0822ece3f332ee
SHA256

87e5939be643ff0e4af7d635ac97bee668c43617af23c1f3c4fe38fe4fc702ca
SHA512

31e2d843edd0008a8b4635520e6bfe8ade79523e0d75888ebcba92627ee4e0461c2ca1529718f865ce1cf3ce1ae21511b3d5edb0a4a65d542ae6159094c8d8df
SSDEEP

98304:QeobMbk1nHJZxb7jpbKqTJUfJ2cUz3cSN:7uJZxbwykfWc0

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
01231bc49561ac9f472928d14a2aca27

Files

01231bc49561ac9f472928d14a2aca27
.exe windows:4 windows x86 arch:x86

af5316400b8cb1dee8ec4e9cb7338054

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCurrentProcess
GetSystemTimeAsFileTime
GetModuleHandleW
QueryPerformanceCounter
GetProcAddress
TerminateProcess
GetTickCount
FreeLibrary
WideCharToMultiByte
SetLastError
HeapFree
HeapAlloc
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
WaitForSingleObject
GetModuleFileNameW
GetStartupInfoW
IsDebuggerPresent
GetCommandLineW
GetFileType
GetModuleHandleA
InitializeCriticalSection
GetConsoleMode
FlushFileBuffers
CreateEventW
TlsAlloc
HeapSetInformation
LoadLibraryExW
GetCPInfo
TlsFree
SetFilePointer
CompareStringW
FindNextFileW
IsValidCodePage
VirtualAlloc
GetCommandLineA
ResetEvent
GetVersionExW
CreateFileA
OutputDebugStringW
EncodePointer
VirtualFree
lstrlenW
LoadLibraryA
GetLocaleInfoW
LoadResource
GetExitCodeProcess
ExpandEnvironmentStringsW
CreateProcessW

user32

TranslateMessage
DispatchMessageW
DestroyWindow
ReleaseDC
DefWindowProcW
PostQuitMessage
CreateWindowExW
GetWindowLongW
GetMessageW
GetDlgItem
GetSystemMetrics
GetClientRect
SetWindowPos
LoadCursorW
GetParent
EndDialog
SetTimer
SetFocus
GetSysColor
EndPaint
SetCursor
KillTimer
RegisterClassW
SystemParametersInfoW
GetKeyState
MessageBoxA
CharUpperW
ClientToScreen

Sections

.text
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3.4MB - Virtual size: 3.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 612KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

af5316400b8cb1dee8ec4e9cb7338054

Headers

File Characteristics

Imports

kernel32

user32

Sections

.text Size: 6KB - Virtual size: 6KB

.rdata Size: 3.4MB - Virtual size: 3.4MB

.idata Size: 2KB - Virtual size: 1KB

.data Size: - Virtual size: 612KB

.text
Size: 6KB - Virtual size: 6KB

.rdata
Size: 3.4MB - Virtual size: 3.4MB

.idata
Size: 2KB - Virtual size: 1KB

.data
Size: - Virtual size: 612KB