0b340ce911aca6140064739dfca62aca

Sharing

Copy URL Twitter E-mail

General

Target

0b340ce911aca6140064739dfca62aca
Size

49KB
MD5

0b340ce911aca6140064739dfca62aca
SHA1

7f9e815571f83430e5d1eaedf916afbc1f1f1bca
SHA256

715253779b834b4d61818281a844bcc34b468cbabd9a64c3269e2c2d72e6aee9
SHA512

a13aaa3a213689ba952765424dc56ed316dd9bf5235ef8b50f4635b18524243e1f3f0ebc169176a02aec57984f05c6965fbf4dc4cdb52e31bc857a2602aa2d8b
SSDEEP

768:pTzAo3JMrELM8/Bty0ucA5+jDMvTRRqCk4dFHbONvhSm6Fc3vRqM6Dg:JtZ4ELMF0uP7a1kiYm6i3vYMeg

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0b340ce911aca6140064739dfca62aca

Files

0b340ce911aca6140064739dfca62aca
.exe windows:4 windows x86 arch:x86

e607004c3cd1087b3c70c825d124f05d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ExitProcess
Sleep
DeleteFileA
GetModuleFileNameA
GetCommandLineA
CreateProcessA
GetStartupInfoA
SetFileAttributesA
CreateDirectoryA
GetSystemDirectoryA
CloseHandle
TerminateProcess
OpenProcess
WriteFile
ReadFile
CreateFileA
SetCurrentDirectoryA
GetProcAddress
LoadLibraryA
SetFilePointer
GetFileSize
CreateThread
GetWindowsDirectoryA
HeapCreate
HeapAlloc
LCMapStringW
WideCharToMultiByte
FlushFileBuffers
GetLastError
GetStringTypeW
GetStringTypeA
SetStdHandle
RtlUnwind
GetStdHandle
GetFileType
Process32Next
Process32First
CreateToolhelp32Snapshot
GetModuleHandleA
GetVersion
MultiByteToWideChar
LCMapStringA
HeapFree
FreeEnvironmentStringsW
GetEnvironmentStringsW
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
GetOEMCP
GetCPInfo
GetACP
SetHandleCount
ExitProcess
Sleep
DeleteFileA
GetModuleFileNameA
GetCommandLineA
CreateProcessA
GetStartupInfoA
SetFileAttributesA
CreateDirectoryA
GetSystemDirectoryA
CloseHandle
TerminateProcess
OpenProcess
WriteFile
ReadFile
CreateFileA
SetCurrentDirectoryA
GetProcAddress
LoadLibraryA
SetFilePointer
GetFileSize
CreateThread
GetWindowsDirectoryA
HeapCreate
HeapAlloc
LCMapStringW
WideCharToMultiByte
FlushFileBuffers
GetLastError
GetStringTypeW
GetStringTypeA
SetStdHandle
RtlUnwind
GetStdHandle
GetFileType
Process32Next
Process32First
CreateToolhelp32Snapshot
GetModuleHandleA
GetVersion
MultiByteToWideChar
LCMapStringA
HeapFree
FreeEnvironmentStringsW
GetEnvironmentStringsW
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
GetOEMCP
GetCPInfo
GetACP
SetHandleCount

wsock32

recv
ioctlsocket
send
shutdown
WSAStartup
socket
bind
connect
htons
closesocket
gethostbyname

Sections

.text
Size: 15KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 4KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

e607004c3cd1087b3c70c825d124f05d

Headers

File Characteristics

Imports

kernel32

wsock32

Sections

.text Size: 15KB - Virtual size: 16KB

.rdata Size: 512B - Virtual size: 4KB

.data Size: 4KB - Virtual size: 12KB

.idata Size: 2KB - Virtual size: 4KB

.reloc Size: - Virtual size: 4KB

.text
Size: 15KB - Virtual size: 16KB

.rdata
Size: 512B - Virtual size: 4KB

.data
Size: 4KB - Virtual size: 12KB

.idata
Size: 2KB - Virtual size: 4KB

.reloc
Size: - Virtual size: 4KB