0f432d6a040d589d7e08b6b5fb217665

General

Target

0f432d6a040d589d7e08b6b5fb217665
Size

3.4MB
MD5

0f432d6a040d589d7e08b6b5fb217665
SHA1

0745f57eb66642f31fa3d7ab742223427b4fec10
SHA256

6bb2f8da36aec3c942a2f8c203169c4944c9f1dda027cabc10a39d3b77219d0d
SHA512

f51f42fc98bca3e461cb957a6025bc5e324b6e83e0e952217c5b213750814f336671f7bc700a8f802139f23a9f3cfdf217a08a7a5090cb85eb0b9ddefc239c8c
SSDEEP

98304:4QAuZRdX/x79VXtl0eR7s+bgKUWjH3ojs5EF/:4/gRJVXP0eR7saPpn6

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0f432d6a040d589d7e08b6b5fb217665

Files

0f432d6a040d589d7e08b6b5fb217665
.exe windows:4 windows x86 arch:x86

d3c5f50368b3b215767e941043e20f26

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCurrentThreadId
GetCurrentProcessId
SetUnhandledExceptionFilter
GetModuleHandleW
GetProcAddress
UnhandledExceptionFilter
Sleep
MultiByteToWideChar
WideCharToMultiByte
SetLastError
HeapAlloc
LocalFree
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
WaitForSingleObject
GetProcessHeap
CreateFileW
ExitProcess
GetStartupInfoW
GetCommandLineW
FindClose
ReadFile
GetACP
FormatMessageW
TlsGetValue
InitializeCriticalSection
TlsSetValue
CreateEventW
HeapSize
LoadLibraryExW
GetCPInfo
TlsFree
GetStringTypeW
RtlUnwind
GetModuleFileNameA
GetOEMCP
GetEnvironmentStringsW
FreeEnvironmentStringsW
IsProcessorFeaturePresent
FindNextFileW
FindFirstFileW
VirtualAlloc
GetConsoleCP
LocalAlloc
DecodePointer
ReleaseMutex
CreateFileA
VirtualFree
GetLocaleInfoW
CreateDirectoryW
GetExitCodeProcess
CreateProcessW

user32

DispatchMessageW
ShowWindow
ReleaseDC
CreateWindowExW
GetWindowLongW
GetMessageW
GetDC
PostMessageW
GetClientRect
IsWindow
GetParent
LoadIconW
BeginPaint
KillTimer
InvalidateRect
RegisterClassW
EnableMenuItem
GetWindow
GetWindowTextW
MessageBoxA

Sections

.data
Size: - Virtual size: 612KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 3.4MB - Virtual size: 3.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.text
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d3c5f50368b3b215767e941043e20f26

Headers

File Characteristics

Imports

kernel32

user32

Sections

.data Size: - Virtual size: 612KB

.rdata Size: 3.4MB - Virtual size: 3.4MB

.text Size: 6KB - Virtual size: 6KB

.idata Size: 2KB - Virtual size: 1KB

.data
Size: - Virtual size: 612KB

.rdata
Size: 3.4MB - Virtual size: 3.4MB

.text
Size: 6KB - Virtual size: 6KB

.idata
Size: 2KB - Virtual size: 1KB