2111a5b0b9e574b8d77b7b4cfba07ae7

General

Target

2111a5b0b9e574b8d77b7b4cfba07ae7
Size

3.4MB
MD5

2111a5b0b9e574b8d77b7b4cfba07ae7
SHA1

b21e8bd41ffb70d44d75906a823054fdac5c926d
SHA256

a918dba99c4e146d7f949caaf02f92811dceae0c431e64a55b015575d6d0e531
SHA512

fb19d39136c036fe057c1f2c8b2b31596d6a6c6617d6e1a8cfca85a0bb12dbef2de174f57c58f636c592d544f787b8283751971549edb9e747fcc5c4516cb0be
SSDEEP

98304:EOtOOmAYJy5jVYPIKFXgEV0GDqr7ILuWNu/aem:70y5JZKRgEVcquYq

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2111a5b0b9e574b8d77b7b4cfba07ae7

Files

2111a5b0b9e574b8d77b7b4cfba07ae7
.exe windows:4 windows x86 arch:x86

70600313f7ea2c7ba5b92612dde080bf

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCurrentProcess
GetCurrentProcessId
SetUnhandledExceptionFilter
GetModuleHandleW
GetProcAddress
CloseHandle
UnhandledExceptionFilter
FreeLibrary
WideCharToMultiByte
SetLastError
HeapFree
LocalFree
DeleteCriticalSection
EnterCriticalSection
GetProcessHeap
CreateFileW
GetStdHandle
GetStartupInfoW
IsDebuggerPresent
GetCommandLineW
FindClose
RaiseException
GetACP
FormatMessageW
GetFileType
TlsGetValue
HeapReAlloc
GetConsoleMode
FlushFileBuffers
CreateEventW
TlsAlloc
HeapSetInformation
WriteConsoleW
LoadLibraryExW
CreateThread
GetCPInfo
TlsFree
SetFilePointer
GetFileAttributesW
CompareStringW
GetStringTypeW
RtlUnwind
LCMapStringW
GetOEMCP
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetConsoleCP
LocalAlloc
GetCommandLineA
DecodePointer
SetEndOfFile
ResetEvent
CreateFileA
OutputDebugStringW
EncodePointer
lstrlenW
LoadLibraryA
GetLocaleInfoW
ExpandEnvironmentStringsW

user32

LoadStringW
ReleaseDC
PostQuitMessage
SetWindowLongW
GetMessageW
GetDlgItem
GetSystemMetrics
EnableWindow
IsWindow
GetParent
EndDialog
LoadIconW
SetForegroundWindow
GetSysColor
EndPaint
KillTimer
EnableMenuItem
SystemParametersInfoW

Sections

.text
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3.4MB - Virtual size: 3.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 612KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

70600313f7ea2c7ba5b92612dde080bf

Headers

File Characteristics

Imports

kernel32

user32

Sections

.text Size: 6KB - Virtual size: 6KB

.rdata Size: 3.4MB - Virtual size: 3.4MB

.idata Size: 2KB - Virtual size: 1KB

.data Size: - Virtual size: 612KB

.text
Size: 6KB - Virtual size: 6KB

.rdata
Size: 3.4MB - Virtual size: 3.4MB

.idata
Size: 2KB - Virtual size: 1KB

.data
Size: - Virtual size: 612KB