1bd82c6071576c709acce025125d186f

General

Target

1bd82c6071576c709acce025125d186f
Size

400KB
MD5

1bd82c6071576c709acce025125d186f
SHA1

b0084bfbdaf93ce154923a7ee5665a8d6f17e739
SHA256

d0cfad9c7c9a1addc2327bc5dcc2f7b8a41ac0c86753359b4ef27c584ffe132a
SHA512

4389d2631ef90c0de5176d1e80200e64e1abd8545a8c454ae59fe426ac3a63ccccce9807186eaf12467d63d447187bde7a0bb2c662c7d25d66f766c5cef57f29
SSDEEP

12288:Y/ufwCcutu4bp9Ev2pWNHh4L/tumPhuh9:qulu4bpOuw3s/tN

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1bd82c6071576c709acce025125d186f

Files

1bd82c6071576c709acce025125d186f
.exe windows:4 windows x86 arch:x86

0c67bf5549a744785f2f57afdd2704a1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLocaleInfoW
GetStringTypeW
GetTimeFormatA
LCMapStringW
GetProcAddress
GetTimeZoneInformation
HeapReAlloc
MultiByteToWideChar
GetProfileIntA
GetLastError
GetCurrentProcessId
SetLastError
WriteConsoleInputA
FreeEnvironmentStringsA
TlsAlloc
VirtualFree
GetUserDefaultLCID
WriteProfileSectionA
TlsFree
VirtualProtect
GetCommandLineA
TlsSetValue
GetConsoleCursorInfo
GetStartupInfoA
HeapCreate
lstrcpyn
GetEnvironmentStringsW
SetHandleCount
EnumSystemLocalesA
ExitProcess
GetTickCount
GetCPInfo
SetEnvironmentVariableA
HeapFree
CompareStringW
GetModuleFileNameA
GetModuleFileNameW
LoadLibraryA
QueryPerformanceCounter
SetThreadIdealProcessor
VirtualAlloc
GetProcessShutdownParameters
InterlockedIncrement
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
GetCurrentThreadId
RtlUnwind
CompareStringA
FreeEnvironmentStringsW
GetDateFormatA
IsValidCodePage
TlsGetValue
GetSystemInfo
GetVolumeInformationW
GetSystemTimeAsFileTime
DeleteCriticalSection
SetConsoleActiveScreenBuffer
GetVersionExW
EnterCriticalSection
GetACP
SetComputerNameW
LCMapStringA
HeapDestroy
WriteFile
GetShortPathNameA
GetCurrentThread
IsValidLocale
SystemTimeToFileTime
GetStringTypeA
LeaveCriticalSection
GetEnvironmentStrings
GlobalHandle
InterlockedExchange
GetLocaleInfoA
WideCharToMultiByte
GetCommandLineW
HeapSize
lstrcmpA
GetNumberFormatW
GetVersionExA
GetStdHandle
HeapAlloc
IsBadWritePtr
GetVolumeInformationA
FindFirstFileExW
GetStartupInfoW
VirtualQuery
GetModuleHandleA
InitializeCriticalSection
GetFileType
GetOEMCP

user32

BroadcastSystemMessage
LockWindowUpdate
GetMenuItemID

Sections

.text
Size: 122KB - Virtual size: 122KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 271KB - Virtual size: 291KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0c67bf5549a744785f2f57afdd2704a1

Headers

File Characteristics

Imports

kernel32

user32

Sections

.text Size: 122KB - Virtual size: 122KB

.data Size: 271KB - Virtual size: 291KB

.rsrc Size: 5KB - Virtual size: 4KB

.text
Size: 122KB - Virtual size: 122KB

.data
Size: 271KB - Virtual size: 291KB

.rsrc
Size: 5KB - Virtual size: 4KB