39171370b8e03dcd4806013c5089c4c9

General

Target

39171370b8e03dcd4806013c5089c4c9
Size

3.4MB
MD5

39171370b8e03dcd4806013c5089c4c9
SHA1

ae77856bc7729655fabec57e00a5e00e1727f86f
SHA256

99c69d1923af7af2c7a6df927d3632b8019f5f1326c4286b258916289a1c6748
SHA512

e217e4b000caddacdef10889a3dd1a99f97bd319c8f7464c160ca1dc62cd5cb6a92fdea2307634cf094f593238e9ecd71bf2ff900570abbfd554677553edc34c
SSDEEP

98304:6xxjogDw6bhx6FY7dRH0fAW4H4IaCqGDYgJfqA8iu:GjzT6FaoA6OzcEve

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
39171370b8e03dcd4806013c5089c4c9

Files

39171370b8e03dcd4806013c5089c4c9
.exe windows:4 windows x86 arch:x86

ebb976ec943f2c01ae25476a5486ca3d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLastError
GetCurrentProcess
GetSystemTimeAsFileTime
SetUnhandledExceptionFilter
GetProcAddress
CloseHandle
GetTickCount
FreeLibrary
MultiByteToWideChar
HeapFree
LocalFree
DeleteCriticalSection
WriteFile
GetProcessHeap
ExitProcess
GetStdHandle
GetStartupInfoW
IsDebuggerPresent
FindClose
ReadFile
SetEvent
FormatMessageW
InitializeCriticalSection
HeapReAlloc
GetConsoleMode
CreateEventW
TlsAlloc
HeapSetInformation
WriteConsoleW
LoadLibraryW
TlsFree
CompareStringW
GetStringTypeW
RtlUnwind
GetModuleFileNameA
LocalAlloc
GetCommandLineA
ReleaseMutex
CreateFileA
OutputDebugStringW
EncodePointer
VirtualFree
lstrlenW
LoadLibraryA
GetModuleHandleExW
GetExitCodeProcess

user32

TranslateMessage
ShowWindow
DestroyWindow
DefWindowProcW
PostQuitMessage
CreateWindowExW
SetWindowLongW
GetDlgItem
GetDC
GetWindowRect
GetClientRect
SetWindowPos
EnableWindow
IsWindow
EndDialog
SetWindowTextW
SetForegroundWindow
PeekMessageW
BeginPaint
SetCursor
InvalidateRect
GetWindowTextW
UpdateWindow
SystemParametersInfoW
ClientToScreen

Sections

.rdata
Size: 3.4MB - Virtual size: 3.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.text
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 612KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

ebb976ec943f2c01ae25476a5486ca3d

Headers

File Characteristics

Imports

kernel32

user32

Sections

.rdata Size: 3.4MB - Virtual size: 3.4MB

.idata Size: 2KB - Virtual size: 1KB

.text Size: 6KB - Virtual size: 6KB

.data Size: - Virtual size: 612KB

.rdata
Size: 3.4MB - Virtual size: 3.4MB

.idata
Size: 2KB - Virtual size: 1KB

.text
Size: 6KB - Virtual size: 6KB

.data
Size: - Virtual size: 612KB