276aa53f0564d763c561122758979425

General

Target

276aa53f0564d763c561122758979425
Size

3.4MB
MD5

276aa53f0564d763c561122758979425
SHA1

f1e6048817c47e031f902b62c73095513852ba38
SHA256

2ed116a7ea29e18180c5f1b7a7e4216c25b2bf7a2ffa3ea6289cd052771338f1
SHA512

2c1e518e8ff659e1db8d6ee7ab31d9143d9614aa30ae0c554102db012e67c6e10181b06357c0385e10db9257fb43d4e8a5e075f8453b593f7901b1a722a5b67a
SSDEEP

49152:ASvr0hNy6moGeRnau+M2mYDflqKEJ6bBAvzptVwpOOvQg3OEr/tT18:ASvrH6manauf2dkFIB2v5Oofet

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
276aa53f0564d763c561122758979425

Files

276aa53f0564d763c561122758979425
.exe windows:4 windows x86 arch:x86

9ff6d6b71f65856bd770e3df48f74d79

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLastError
GetCurrentThreadId
GetCurrentProcess
GetModuleHandleW
GetProcAddress
TerminateProcess
UnhandledExceptionFilter
Sleep
GetTickCount
FreeLibrary
WideCharToMultiByte
HeapAlloc
LocalFree
LeaveCriticalSection
WriteFile
GetProcessHeap
ExitProcess
GetCommandLineW
FindClose
ReadFile
RaiseException
SetEvent
GetFileType
TlsGetValue
GetModuleHandleA
InitializeCriticalSection
HeapReAlloc
FlushFileBuffers
TlsSetValue
CreateEventW
TlsAlloc
CreateThread
GetCPInfo
GetFileAttributesW
GetStringTypeW
LCMapStringW
GetModuleFileNameA
InitializeCriticalSectionAndSpinCount
GetOEMCP
GetEnvironmentStringsW
IsValidCodePage
FindFirstFileW
VirtualAlloc
GetConsoleCP
GetCommandLineA
SetEndOfFile
ResetEvent
LoadLibraryA
GetModuleHandleExW
GetLocaleInfoW
CreateDirectoryW
GetFullPathNameW
LoadResource

user32

TranslateMessage
LoadStringW
DispatchMessageW
PostQuitMessage
GetWindowLongW
GetMessageW
GetDlgItem
GetDC
GetWindowRect
SendMessageW
LoadCursorW
GetParent
EndDialog
SetWindowTextW
SetTimer
LoadIconW
SetForegroundWindow
PeekMessageW
EnableMenuItem
GetWindow
UpdateWindow
GetKeyState
MessageBoxA
CharUpperW

Sections

.rdata
Size: 3.4MB - Virtual size: 3.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 612KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9ff6d6b71f65856bd770e3df48f74d79

Headers

File Characteristics

Imports

kernel32

user32

Sections

.rdata Size: 3.4MB - Virtual size: 3.4MB

.idata Size: 2KB - Virtual size: 1KB

.data Size: - Virtual size: 612KB

.text Size: 6KB - Virtual size: 6KB

.rdata
Size: 3.4MB - Virtual size: 3.4MB

.idata
Size: 2KB - Virtual size: 1KB

.data
Size: - Virtual size: 612KB

.text
Size: 6KB - Virtual size: 6KB