1da7a41a866061c64467755474ee7e44

General

Target

1da7a41a866061c64467755474ee7e44
Size

3.4MB
MD5

1da7a41a866061c64467755474ee7e44
SHA1

18cdd2067aa0ef4c2e1cbf910fe86b00ad146112
SHA256

5499816bbae3db199e4476ad99e53a91c5bdf206e7525c83c1e440b606031bb2
SHA512

d01f7bc87fc1afd26afe138cdec9eb072203debe923b6c925f9573a4be4193c9357672a17bc161b6769116558fa9a3c9b779b096f9d17ec6cbfce7f9f31edd15
SSDEEP

98304:tfTkJwlVbYtxyls1/wUt1eWyiCUCYPwxDndEF:FwJmoMs1/ttsWyiUYPwxDndE

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1da7a41a866061c64467755474ee7e44

Files

1da7a41a866061c64467755474ee7e44
.exe windows:4 windows x86 arch:x86

a16961fa41cd9d3683de6a55fff9ee07

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLastError
GetCurrentProcess
GetSystemTimeAsFileTime
SetUnhandledExceptionFilter
GetModuleHandleW
QueryPerformanceCounter
GetProcAddress
GetTickCount
WideCharToMultiByte
SetLastError
HeapFree
LocalFree
DeleteCriticalSection
WriteFile
GetProcessHeap
GetCommandLineW
FindClose
FormatMessageW
GetModuleHandleA
FlushFileBuffers
TlsSetValue
CreateEventW
TlsAlloc
HeapSize
LoadLibraryExW
CreateThread
GetCPInfo
GetFileAttributesW
LCMapStringW
InitializeCriticalSectionAndSpinCount
GetOEMCP
GetEnvironmentStringsW
FindNextFileW
LocalAlloc
DecodePointer
GetVersionExW
GetFileSize
lstrlenW
GetModuleHandleExW
GetLocaleInfoW
CreateDirectoryW
ExpandEnvironmentStringsW

user32

TranslateMessage
LoadStringW
DestroyWindow
ReleaseDC
MessageBoxW
SetWindowLongW
GetMessageW
GetSystemMetrics
GetDC
GetClientRect
EnableWindow
LoadCursorW
EndDialog
SetWindowTextW
SetTimer
LoadIconW
SetFocus
GetSysColor
PeekMessageW
EndPaint
SetCursor
KillTimer
RegisterClassW
EnableMenuItem
GetWindowTextW
SystemParametersInfoW
MessageBoxA
CharUpperW

Sections

.idata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 3.4MB - Virtual size: 3.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 612KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a16961fa41cd9d3683de6a55fff9ee07

Headers

File Characteristics

Imports

kernel32

user32

Sections

.idata Size: 2KB - Virtual size: 1KB

.rdata Size: 3.4MB - Virtual size: 3.4MB

.data Size: - Virtual size: 612KB

.text Size: 6KB - Virtual size: 6KB

.idata
Size: 2KB - Virtual size: 1KB

.rdata
Size: 3.4MB - Virtual size: 3.4MB

.data
Size: - Virtual size: 612KB

.text
Size: 6KB - Virtual size: 6KB