2d8245eae3b6586b8a2e533e6873dcd2

General

Target

2d8245eae3b6586b8a2e533e6873dcd2
Size

3.4MB
MD5

2d8245eae3b6586b8a2e533e6873dcd2
SHA1

8f2ad02e6fa1f8d144afbf5aeaad732e5bc6a07d
SHA256

4794f4cebb180ec0d1aeab4e6fd02b52c99d5655a951a129541cdb6308267b95
SHA512

32a89ac4525025d67877bb1fa22a15d119fcab48e9a20155041927777a9b51f1baed2be6a83abed44dca20d3a0d85207d3f13662b996d00488a51b39c4e5c868
SSDEEP

98304:xcQ9EgGvQXHo/05oUcxbWyHxPo24zGm4+mP5f:xcQ9mYXHj5CxbWyHxQ24mh

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2d8245eae3b6586b8a2e533e6873dcd2

Files

2d8245eae3b6586b8a2e533e6873dcd2
.exe windows:4 windows x86 arch:x86

f239e7ba45a05934851daf2bc2e1ce4d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLastError
SetUnhandledExceptionFilter
GetModuleHandleW
QueryPerformanceCounter
GetProcAddress
UnhandledExceptionFilter
GetTickCount
FreeLibrary
WideCharToMultiByte
SetLastError
HeapAlloc
LocalFree
DeleteCriticalSection
EnterCriticalSection
WriteFile
WaitForSingleObject
CreateFileW
ExitProcess
GetStartupInfoW
IsDebuggerPresent
ReadFile
SetEvent
FormatMessageW
GetFileType
TlsGetValue
HeapReAlloc
GetConsoleMode
FlushFileBuffers
HeapSize
WriteConsoleW
CreateThread
GetCPInfo
SetFilePointer
GetFileAttributesW
GetStringTypeW
GetOEMCP
GetEnvironmentStringsW
SetStdHandle
FreeEnvironmentStringsW
FindNextFileW
IsValidCodePage
LocalAlloc
ResetEvent
CreateFileA
EncodePointer
VirtualFree
LoadResource
GetExitCodeProcess
ExpandEnvironmentStringsW
CreateProcessW

user32

TranslateMessage
DispatchMessageW
PostQuitMessage
CreateWindowExW
SetWindowLongW
GetWindowLongW
GetDlgItem
GetSystemMetrics
GetDC
IsWindow
GetParent
EndDialog
SetWindowTextW
LoadIconW
GetSysColor
KillTimer
InvalidateRect
UpdateWindow

Sections

.text
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3.4MB - Virtual size: 3.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 612KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f239e7ba45a05934851daf2bc2e1ce4d

Headers

File Characteristics

Imports

kernel32

user32

Sections

.text Size: 6KB - Virtual size: 6KB

.rdata Size: 3.4MB - Virtual size: 3.4MB

.data Size: - Virtual size: 612KB

.idata Size: 2KB - Virtual size: 1KB

.text
Size: 6KB - Virtual size: 6KB

.rdata
Size: 3.4MB - Virtual size: 3.4MB

.data
Size: - Virtual size: 612KB

.idata
Size: 2KB - Virtual size: 1KB