117d14edb54f6feda3a0f8a0979b0462

Sharing

Copy URL

Twitter E-mail

General

Target

117d14edb54f6feda3a0f8a0979b0462
Size

268KB
MD5

117d14edb54f6feda3a0f8a0979b0462
SHA1

2392f89ab18c02bec3f76b89f7bb41242da96f38
SHA256

43c1c9cc05c3a19516f28b95c3be0f8aaeb45d647d9dfbd51d99704f450e3efe
SHA512

5a258353953ebcbd76c6abed2f756082c20a54f3efcfb79e3e2ed7120490e033ed2eb99547a811a766e1b4d3f3ccb1607df2ab8bb713017f57a787201ed81369
SSDEEP

6144:uk4jbFP03iQDV6QJDIdN34ieaJNRKphuyBIWndCwo1lQuQ6F2Zkho0XxaxC:rdCwo1+uQ6uxC

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
117d14edb54f6feda3a0f8a0979b0462

Files

117d14edb54f6feda3a0f8a0979b0462
.exe windows:6 windows x86 arch:x86

340eb4039920d6ff555f1e45227fbec7

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateFileA
MoveFileA
DeleteFileA
MoveFileExA
GetLastError
CloseHandle
CreateEventA
DeviceIoControl
ResetEvent
GetOverlappedResult
WaitForSingleObject
FileTimeToSystemTime
FileTimeToLocalFileTime
WriteFile
WaitForMultipleObjects
Sleep
SetEvent
GetVersionExA
OpenEventA
HeapSetInformation
GetConsoleScreenBufferInfo
GetConsoleMode
SetConsoleMode
GetStdHandle
SetConsoleCursorPosition
FillConsoleOutputCharacterA
WriteConsoleA
GetLocalTime
QueryPerformanceCounter
GetTickCount
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetCommandLineA
EnterCriticalSection
LeaveCriticalSection
HeapFree
HeapAlloc
WideCharToMultiByte
GetTimeZoneInformation
GetProcAddress
GetModuleHandleA
ExitProcess
ReadConsoleInputA
PeekConsoleInputA
GetNumberOfConsoleInputEvents
ExitThread
ResumeThread
CreateThread
SetConsoleCtrlHandler
GetModuleFileNameA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
GetFileType
GetStartupInfoA
DeleteCriticalSection
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
InterlockedDecrement
HeapDestroy
HeapCreate
VirtualFree
GetConsoleCP
FlushFileBuffers
OutputDebugStringA
VirtualAlloc
HeapReAlloc
GetCPInfo
LoadLibraryA
InitializeCriticalSection
GetModuleHandleW
MultiByteToWideChar
ReadFile
SetStdHandle
RtlUnwind
SetFilePointer
GetACP
GetOEMCP
GetFileAttributesA
GetConsoleOutputCP
WriteConsoleW
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
CompareStringA
CompareStringW
SetEnvironmentVariableA
GetLocaleInfoA
GetExitCodeProcess
CreateProcessA
VirtualProtect
GetSystemInfo
VirtualQuery
SetEndOfFile
GetProcessHeap

Sections

.text
Size: 215KB - Virtual size: 215KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 14KB - Virtual size: 76KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 33KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

340eb4039920d6ff555f1e45227fbec7

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

Sections

.text Size: 215KB - Virtual size: 215KB

.data Size: 14KB - Virtual size: 76KB

.rsrc Size: 4KB - Virtual size: 3KB

.reloc Size: 33KB - Virtual size: 39KB

.text
Size: 215KB - Virtual size: 215KB

.data
Size: 14KB - Virtual size: 76KB

.rsrc
Size: 4KB - Virtual size: 3KB

.reloc
Size: 33KB - Virtual size: 39KB