3894ff70636b1cc8d48c3728dbd83f4f

General

Target

3894ff70636b1cc8d48c3728dbd83f4f
Size

46KB
MD5

3894ff70636b1cc8d48c3728dbd83f4f
SHA1

d9131e0a1d46dd9678150fe10b9abeacd7525c3d
SHA256

7f1e4466f338b494491e8688ce776cc3ea0eb8f9f649444c521a4967c0127b34
SHA512

a435b39489d4516e86eec2cc74d70b03184a8c8e8154e7b9e71e654d5c93c914ab30835c9164aa49cc6202012f3768c90ef89750442bda7c344c5f922651d58c
SSDEEP

768:2CjA86jIW2BDOxXVjgkI0PyFDtUZkgRnNIbf02JpqX26NC:2CjA86jCBqV40ql6ZkUNx2Je2

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3894ff70636b1cc8d48c3728dbd83f4f

Files

3894ff70636b1cc8d48c3728dbd83f4f
.exe windows:5 windows x86 arch:x86

e5d4ee2b6e98e52ee5965301af5cc0de

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CopyFileW
FlushFileBuffers
SetFileTime
GetFileSizeEx
GetTempPathW
IsBadReadPtr
GetFileSize
LeaveCriticalSection
CreateProcessW
GetFileTime
SetFileAttributesW
OpenMutexW
CloseHandle
SetFilePointer
lstrcpynW
GetSystemTime
MultiByteToWideChar
GetModuleFileNameW
Sleep
CreateDirectoryW
GetExitCodeProcess
GlobalUnlock
HeapAlloc
EnterCriticalSection
SystemTimeToFileTime
GetUserDefaultUILanguage
CreateFileMappingW
FindClose
lstrcatW
FindResourceW
WriteProcessMemory
GetProcessTimes
DeleteFileW
WaitForSingleObject
CreateEventW
GetThreadPriority
ReleaseMutex
ResetEvent
WideCharToMultiByte
ReadFile
lstrcatA
CreateMutexW
ExpandEnvironmentStringsW
GetProcessHeap
OpenProcess
HeapFree
SetThreadPriority
GetModuleFileNameA
UnmapViewOfFile
GetLastError
GetModuleHandleA
HeapReAlloc
GetCurrentProcessId
GetDriveTypeW
MoveFileExW
FindFirstFileW
GlobalLock
InitializeCriticalSection
SetLastError
lstrlenW
SetEvent
MapViewOfFile
lstrcmpiA
lstrcpyA
WriteFile
GetLocalTime
GetLogicalDrives
GetCommandLineA
GetTempFileNameW
CreateFileW
CreateThread
GetVersionExW
GetTickCount
GetSystemTimeAsFileTime
DisconnectNamedPipe
lstrlenA
SetEndOfFile
GetCurrentThreadId
FindNextFileW
lstrcpyW
GetTimeZoneInformation
lstrcmpiW
GetComputerNameW

user32

ExitWindowsEx
GetForegroundWindow
GetDlgItemTextW
MsgWaitForMultipleObjects
GetMessageA
GetClipboardData
LoadCursorW

Sections

.inwvmd
Size: 36KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.ovwb
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.afuh
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.dancl
Size: 2KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e5d4ee2b6e98e52ee5965301af5cc0de

Headers

File Characteristics

Imports

kernel32

user32

Sections

.inwvmd Size: 36KB - Virtual size: 56KB

.ovwb Size: 1KB - Virtual size: 4KB

.afuh Size: 4KB - Virtual size: 4KB

.dancl Size: 2KB - Virtual size: 72KB

.inwvmd
Size: 36KB - Virtual size: 56KB

.ovwb
Size: 1KB - Virtual size: 4KB

.afuh
Size: 4KB - Virtual size: 4KB

.dancl
Size: 2KB - Virtual size: 72KB