12d35de80c27af7d7e260a3b9e2abf9a

General

Target

12d35de80c27af7d7e260a3b9e2abf9a
Size

32KB
MD5

12d35de80c27af7d7e260a3b9e2abf9a
SHA1

675c0edf56a0b3e679d53ff6729e1ac502ef05b3
SHA256

52d53a404660d1b350833a019ede3d60aac9a4a9d619f7295bb33aa9638139b9
SHA512

5dd8a9c2d256b7081ceedf2075a5842a538901bd04ecf5bb0d8647472107bbea9c60ea9936b055b513c44987eb4cd1e0804f3ae653d1be853f005220a86d1fbd
SSDEEP

384:3RRbyBRT5TXsSQbv2tVgmBxt2vNmlG8z+oE7LGSIUpdZmz2P1EozV:bb4RNXshYVgmBKSKoeLPhpd8S1Eo

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
12d35de80c27af7d7e260a3b9e2abf9a

Files

12d35de80c27af7d7e260a3b9e2abf9a
.exe windows:4 windows x86 arch:x86

a8943bcc9fcfc27821ab76f3ad977b1d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetPrivateProfileIntA
WritePrivateProfileStringA
GetLocalTime
DeleteFileA
CloseHandle
GetFileTime
CreateFileA
SetFileTime
SystemTimeToFileTime
GetSystemTime
GetSystemDirectoryA
Sleep
WinExec
GetStringTypeA
LCMapStringW
LCMapStringA
MultiByteToWideChar
SetEndOfFile
LoadLibraryA
GetProcAddress
GetOEMCP
GetACP
GetCPInfo
FlushFileBuffers
SetStdHandle
HeapReAlloc
VirtualAlloc
HeapAlloc
SetFilePointer
WriteFile
RtlUnwind
VirtualFree
HeapCreate
HeapDestroy
GetFileType
GetStdHandle
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetVersion
ExitProcess
HeapFree
GetLastError
ReadFile
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStringTypeW

user32

DefWindowProcA
PostQuitMessage
KillTimer
SendMessageA
PeekMessageA
GetMessageA
TranslateMessage
DispatchMessageA
WaitMessage
LoadIconA
LoadCursorA
RegisterClassA
GetSystemMetrics
CreateWindowExA
GetWindowLongA
SetWindowLongA
SetWindowPos
SetTimer

urlmon

URLDownloadToFileA

wininet

InternetCheckConnectionA
InternetQueryOptionA

Sections

.text
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

a8943bcc9fcfc27821ab76f3ad977b1d

Headers

File Characteristics

Imports

kernel32

user32

urlmon

wininet

Sections

.text Size: 20KB - Virtual size: 19KB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 4KB - Virtual size: 22KB

.text
Size: 20KB - Virtual size: 19KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 4KB - Virtual size: 22KB