01323dd6c0de821eb6f1f92657f48304

General

Target

01323dd6c0de821eb6f1f92657f48304
Size

3.4MB
MD5

01323dd6c0de821eb6f1f92657f48304
SHA1

07206ab6ea7a8e488b5d179cf0d09419f03167f8
SHA256

d2aeaa364f620fb3bcbf340793d2b474e2567c14ec83eef1949d3ad0c688f99d
SHA512

243540d2bd8e985baef20945aea5b242f3091725463ce9e2974d4216a913f01ebd04b8d62fed851884d20d6ede0a1684d1a793d5d05bba6f454ee60dd2f7f2fd
SSDEEP

98304:GwBjDuNZZViwHFwyuhrtn3JVDKlloLIEuCwSgMXI:GwBjDcRZ4rtn33+PfEu4

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
01323dd6c0de821eb6f1f92657f48304

Files

01323dd6c0de821eb6f1f92657f48304
.exe windows:4 windows x86 arch:x86

e5df3c5ea60344c83df305c409c6824e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetUnhandledExceptionFilter
GetModuleHandleW
UnhandledExceptionFilter
Sleep
FreeLibrary
SetLastError
HeapFree
LeaveCriticalSection
EnterCriticalSection
WriteFile
GetProcessHeap
GetStartupInfoW
IsDebuggerPresent
GetCommandLineW
ReadFile
RaiseException
GetACP
FormatMessageW
GetFileType
GetModuleHandleA
InitializeCriticalSection
HeapReAlloc
FlushFileBuffers
CreateEventW
TlsAlloc
HeapSetInformation
HeapSize
LoadLibraryExW
CreateThread
GetCPInfo
SetFilePointer
CompareStringW
GetStringTypeW
RtlUnwind
GetModuleFileNameA
InitializeCriticalSectionAndSpinCount
GetEnvironmentStringsW
FreeEnvironmentStringsW
IsProcessorFeaturePresent
FindNextFileW
IsValidCodePage
FindFirstFileW
VirtualAlloc
LocalAlloc
SetEndOfFile
OutputDebugStringW
GetFileSize
lstrlenW
LoadLibraryA
GetModuleHandleExW
GetLocaleInfoW
LoadResource
ExpandEnvironmentStringsW
CreateProcessW

user32

TranslateMessage
DispatchMessageW
ShowWindow
DestroyWindow
ReleaseDC
DefWindowProcW
MessageBoxW
CreateWindowExW
GetMessageW
GetDlgItem
GetSystemMetrics
GetDC
PostMessageW
EnableWindow
IsWindow
PeekMessageW
EndPaint
SetCursor
InvalidateRect
RegisterClassW
GetWindow
GetWindowTextW
CharUpperW
ClientToScreen

Sections

.rdata
Size: 3.4MB - Virtual size: 3.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 612KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e5df3c5ea60344c83df305c409c6824e

Headers

File Characteristics

Imports

kernel32

user32

Sections

.rdata Size: 3.4MB - Virtual size: 3.4MB

.data Size: - Virtual size: 612KB

.text Size: 6KB - Virtual size: 6KB

.idata Size: 2KB - Virtual size: 1KB

.rdata
Size: 3.4MB - Virtual size: 3.4MB

.data
Size: - Virtual size: 612KB

.text
Size: 6KB - Virtual size: 6KB

.idata
Size: 2KB - Virtual size: 1KB