2d83a0f0098fecdef97190e94b598a40

General

Target

2d83a0f0098fecdef97190e94b598a40
Size

3.4MB
MD5

2d83a0f0098fecdef97190e94b598a40
SHA1

8191a14574e49e0884dfd87af748cfbe41777e90
SHA256

a5e58e2473c430b8a85d9fc1ab9c83c0ce61680a635affa994788635e20b1955
SHA512

58e3d98eed52b56baab7126eb229eda3ae6923f105ae06daff4638f094f9303c4311c54ebd3af57cc57c23cab7a78787d51fdfd7566b0d356af66df16529bf49
SSDEEP

98304:iFz73Zt2/4FOfMAB1HbAn8t1VFex52OhS+NCB:iLV8LBFAn8tfFG5zTC

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2d83a0f0098fecdef97190e94b598a40

Files

2d83a0f0098fecdef97190e94b598a40
.exe windows:4 windows x86 arch:x86

22219ba7afe9bcf90310ab6f3cb82430

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLastError
GetCurrentProcess
GetCurrentProcessId
GetModuleHandleW
CloseHandle
Sleep
GetTickCount
FreeLibrary
MultiByteToWideChar
HeapAlloc
GetProcessHeap
CreateFileW
ExitProcess
GetStdHandle
GetCommandLineW
FindClose
GetACP
FormatMessageW
TlsGetValue
GetModuleHandleA
GetConsoleMode
FlushFileBuffers
TlsAlloc
LoadLibraryW
LoadLibraryExW
GetCPInfo
RtlUnwind
GetModuleFileNameA
GetEnvironmentStringsW
SetStdHandle
DeleteFileW
LocalAlloc
SetEndOfFile
GetVersionExW
CreateFileA
GetFileSize
VirtualFree
LoadLibraryA
GetModuleHandleExW
GetLocaleInfoW
GetFullPathNameW
LoadResource
UnmapViewOfFile
GetExitCodeProcess
ExpandEnvironmentStringsW

user32

LoadStringW
DispatchMessageW
DestroyWindow
ReleaseDC
CreateWindowExW
SetWindowLongW
GetWindowLongW
GetSystemMetrics
GetDC
SetWindowPos
LoadCursorW
EndDialog
SetTimer
LoadIconW
SetFocus
PeekMessageW
SetCursor
KillTimer
EnableMenuItem
GetWindow
GetWindowTextW
UpdateWindow
SystemParametersInfoW
GetKeyState
ClientToScreen

Sections

.rdata
Size: 3.4MB - Virtual size: 3.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.text
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 612KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

22219ba7afe9bcf90310ab6f3cb82430

Headers

File Characteristics

Imports

kernel32

user32

Sections

.rdata Size: 3.4MB - Virtual size: 3.4MB

.idata Size: 2KB - Virtual size: 1KB

.text Size: 6KB - Virtual size: 6KB

.data Size: - Virtual size: 612KB

.rdata
Size: 3.4MB - Virtual size: 3.4MB

.idata
Size: 2KB - Virtual size: 1KB

.text
Size: 6KB - Virtual size: 6KB

.data
Size: - Virtual size: 612KB