16eb7f241f9a996f2f6376bd21d789b0

Sharing

Copy URL Twitter E-mail

General

Target

16eb7f241f9a996f2f6376bd21d789b0
Size

25KB
MD5

16eb7f241f9a996f2f6376bd21d789b0
SHA1

31ae9403dab22b5e56667f4d37c38622b4f5f78e
SHA256

2d9ced9fe552ae131dbdaa274fc7f23558adccaee3ff7b5d27ab499107f10142
SHA512

8c8a66e8f3fef3ee641df8c751dd4f6953e793334e609dc2a7d2b25dcbaf4dd5ed2a7e621dc35bf8159e1d85721a17a1d32d00e12e66798d25fbde354f9d8a3b
SSDEEP

768:bxH8/FBN9f5UqakZ1HGQpAc4i9DdWo4L:be/F3Zxa0mQyc4i9DdWo4L

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
16eb7f241f9a996f2f6376bd21d789b0

Files

16eb7f241f9a996f2f6376bd21d789b0
.exe windows:4 windows x86 arch:x86

36bce4fb3d7997b95ef310b4c453f29b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetUserDefaultLCID
SleepEx
GetCommandLineA
GlobalHandle
WideCharToMultiByte
SetFileAttributesA
GetProcAddress
GetFileAttributesA
IsBadHugeReadPtr
LocalCompact
GetLogicalDrives
CreateFileA
QueueUserAPC
FindClose
SizeofResource
MoveFileExA
AddAtomA
GlobalFree
ResetEvent
GetThreadPriorityBoost
AllocConsole
WaitForSingleObject
DefineDosDeviceA
VirtualFreeEx
GetCPInfo
EndUpdateResourceA
MulDiv
SetFilePointer
LocalLock
CreateEventA
GetPriorityClass
GetEnvironmentVariableA
GlobalAlloc
LocalUnlock
GetTickCount
LocalAlloc
IsBadStringPtrA
GetProcessWorkingSetSize
GetWindowsDirectoryA
UpdateResourceA
GetLongPathNameA
CopyFileA
GetCurrentProcess
ReadConsoleA
EraseTape
WriteFile
FindResourceA
SignalObjectAndWait
LoadLibraryExA
OpenEventA
InitAtomTable
LocalSize
PurgeComm
PeekNamedPipe
WritePrivateProfileSectionA
GlobalUnfix
GlobalUnlock
DeleteAtom
DuplicateHandle
MoveFileA
FindResourceExA
GetStdHandle
GlobalLock
VirtualQueryEx
VirtualUnlock
IsSystemResumeAutomatic
GetFileInformationByHandle
VirtualFree
IsBadReadPtr
MultiByteToWideChar
GetModuleHandleA
GetLargestConsoleWindowSize
CopyFileExA
FlushInstructionCache
GetSystemDefaultLCID
IsBadCodePtr
ReadFile
DosDateTimeToFileTime
FreeResource
QueryPerformanceCounter
GlobalFix
CreateMailslotA
FindAtomA
GetProfileStringA
GetDriveTypeA
GetLogicalDriveStringsA
OpenFileMappingA
GlobalAddAtomA
FreeLibrary
GetFullPathNameA
GetSystemDirectoryA
GetSystemDefaultUILanguage
GetUserDefaultUILanguage
FormatMessageA
SearchPathA
GetTempPathA
GetMailslotInfo
WaitForMultipleObjectsEx
WritePrivateProfileStructA
GetUserDefaultLangID
UnlockFile
BeginUpdateResourceA
WaitForMultipleObjects
GlobalFindAtomA
GetVolumeInformationA
CreateIoCompletionPort
GetExitCodeProcess
SetEvent
VirtualAlloc
GetCurrentThread
GetFileSize
GetPrivateProfileSectionNamesA
WriteProfileStringA
SetLastError
PulseEvent
HeapCreate
GetProcessHeaps
SetErrorMode
HeapReAlloc
Beep
GetDiskFreeSpaceExA
GlobalWire
FindCloseChangeNotification
GetProfileSectionA
HeapDestroy
GetShortPathNameA
ContinueDebugEvent
DeviceIoControl
WaitForSingleObjectEx
GetHandleInformation
FoldStringA
GlobalSize
GetProfileIntA
GetCommMask
LocalReAlloc
WaitNamedPipeA
IsProcessorFeaturePresent
GetLastError
LocalHandle
CreateConsoleScreenBuffer
LocalFree
ReleaseSemaphore
RemoveDirectoryA
GetBinaryTypeA
CreateWaitableTimerA
GetNamedPipeHandleStateA
FlushViewOfFile
CreateDirectoryExA
QueryDosDeviceA
GetPrivateProfileStructA
GetProcessAffinityMask
GetACP
GetStartupInfoA

msvcrt

__set_app_type
_controlfp
exit
strstr

Sections

.text
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

36bce4fb3d7997b95ef310b4c453f29b

Headers

File Characteristics

Imports

kernel32

msvcrt

Sections

.text Size: 16KB - Virtual size: 15KB

.data Size: 8KB - Virtual size: 8KB

.text
Size: 16KB - Virtual size: 15KB

.data
Size: 8KB - Virtual size: 8KB