110534708ad996587bca3714b906cc5d

General

Target

110534708ad996587bca3714b906cc5d
Size

439KB
MD5

110534708ad996587bca3714b906cc5d
SHA1

d580924e0df0e4014f677f497e83b917349e6c24
SHA256

179de7599963b613f962f143288acd953e7f08011ff7951ad0a719727a6dff5f
SHA512

1b79c872bbf3498014c226ae50ddecfb8a6e9e2087163fb15005a1124be36e5f482abe328ea87ceb6bd48137ba15d4b6eabf7b4a8550000fbd821cc702799b7f
SSDEEP

12288:wAmS7ROJPUgD9z2/yWvgt5LEmEElOjnpmyh4veL4sWyzoDnvT+x:eS9OT9z2/VgX0cOjp14veUFIoX+

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
110534708ad996587bca3714b906cc5d

Files

110534708ad996587bca3714b906cc5d
.exe windows:4 windows x86 arch:x86

e8183fcd096786d8eace4c214ccb3742

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

odbcbcp

ord14
ord10
ord3
ord2

msvcrt

exit
freopen
_wcslwr
_mbschr
iswprint
_iob
__p__osver
__winitenv
wcsspn
_acmdln
_wcsdup
__badioinfo
_amsg_exit
asin

kernel32

TransactNamedPipe
GetModuleHandleW
VirtualAlloc
GetACP
SetEvent
GetLargestConsoleWindowSize
GetCommandLineA
GetLastError
GetOverlappedResult
Module32FirstW
GetLogicalDriveStringsW
GlobalUnlock
SetConsoleCtrlHandler
AddAtomW
DisableThreadLibraryCalls
GetModuleHandleA
TlsFree
GetFileAttributesW
GetCommandLineW
GetNamedPipeHandleStateA
ReadFile
ExitProcess

comdlg32

ChooseFontW
PageSetupDlgA
ReplaceTextW
GetSaveFileNameW
FindTextA
PrintDlgExW
PrintDlgW
GetFileTitleA
ChooseColorW
GetSaveFileNameA
GetFileTitleW
ChooseColorA

Sections

.text
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.CRT
Size: 512B - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 92KB - Virtual size: 173KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.textbs
Size: 120KB - Virtual size: 179KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 110KB - Virtual size: 176KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 109KB - Virtual size: 108KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e8183fcd096786d8eace4c214ccb3742

Headers

DLL Characteristics

File Characteristics

Imports

odbcbcp

msvcrt

kernel32

comdlg32

Sections

.text Size: 6KB - Virtual size: 6KB

.CRT Size: 512B - Virtual size: 15KB

.data Size: 92KB - Virtual size: 173KB

.textbs Size: 120KB - Virtual size: 179KB

.idata Size: 110KB - Virtual size: 176KB

.rsrc Size: 109KB - Virtual size: 108KB

.text
Size: 6KB - Virtual size: 6KB

.CRT
Size: 512B - Virtual size: 15KB

.data
Size: 92KB - Virtual size: 173KB

.textbs
Size: 120KB - Virtual size: 179KB

.idata
Size: 110KB - Virtual size: 176KB

.rsrc
Size: 109KB - Virtual size: 108KB