3a4e2ed6cfce72c333b72adea350d2bc

General

Target

3a4e2ed6cfce72c333b72adea350d2bc
Size

433KB
MD5

3a4e2ed6cfce72c333b72adea350d2bc
SHA1

6cda545e541921365c5e6a6655c19552be75632f
SHA256

8970f47f554c41e846715379106a4690e7baa9631ac51e51e299939ce765034b
SHA512

c377e11beba1a44b8fe61eb11240428b5cd8b0c97d154c8ba52c5bf36db22b93797add280121a90408bc72992542034ca385909157484f8efb7e37dea8f85811
SSDEEP

12288:twnxuMstXlX8Suu9acX942VXmXNzv2oQ6wA4:tcwM2VX8SuIaB2VWlvK

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3a4e2ed6cfce72c333b72adea350d2bc

Files

3a4e2ed6cfce72c333b72adea350d2bc
.exe windows:4 windows x86 arch:x86

d521010f0fdd9a2c25c6d4314b91be5b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetStringTypeW
GetFileType
WideCharToMultiByte
GetDateFormatA
RtlUnwind
LeaveCriticalSection
GetCurrentThread
GetCurrentProcess
IsBadWritePtr
VirtualAlloc
TlsGetValue
VirtualFree
HeapReAlloc
HeapCreate
DeleteCriticalSection
GetVersionExA
GetStartupInfoA
InterlockedExchange
GetModuleFileNameA
GetStringTypeA
LCMapStringW
ExitProcess
GetTimeFormatA
LCMapStringA
SetHandleCount
LoadLibraryA
GetTickCount
GetSystemTimeAsFileTime
IsValidCodePage
GetOEMCP
TlsFree
QueryPerformanceCounter
CompareStringW
TlsSetValue
GetACP
VirtualQuery
GetCurrentThreadId
GetLocaleInfoW
HeapAlloc
HeapSize
HeapFree
GetFileAttributesA
TerminateProcess
GetCurrentProcessId
GetCommandLineA
MultiByteToWideChar
IsValidLocale
AddAtomA
TlsAlloc
GetLocaleInfoA
GetTimeZoneInformation
SetEnvironmentVariableA
GetStdHandle
UnhandledExceptionFilter
WriteFile
EnumSystemLocalesA
GetEnvironmentStrings
GetModuleHandleA
EnterCriticalSection
GetSystemInfo
GetCPInfo
CompareStringA
InitializeCriticalSection
FreeEnvironmentStringsW
FreeEnvironmentStringsA
GetLastError
SetLastError
GetProcAddress
GetUserDefaultLCID
HeapDestroy
GetEnvironmentStringsW
VirtualProtect

user32

CountClipboardFormats
GetShellWindow
CharLowerA
LoadImageA
CallMsgFilterW
SetDoubleClickTime
SetClassWord
MapVirtualKeyA
CharPrevExA
DdeQueryNextServer
CloseDesktop
GetClassNameW
GetDlgCtrlID
EnumDisplayMonitors
SetThreadDesktop
EmptyClipboard

comdlg32

GetFileTitleW
ChooseFontW
ReplaceTextA
ChooseColorW
LoadAlterBitmap
GetSaveFileNameW
GetFileTitleA
GetOpenFileNameW
PageSetupDlgW

Sections

.text
Size: 154KB - Virtual size: 154KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 273KB - Virtual size: 286KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d521010f0fdd9a2c25c6d4314b91be5b

Headers

File Characteristics

Imports

kernel32

user32

comdlg32

Sections

.text Size: 154KB - Virtual size: 154KB

.data Size: 273KB - Virtual size: 286KB

.rsrc Size: 4KB - Virtual size: 3KB

.text
Size: 154KB - Virtual size: 154KB

.data
Size: 273KB - Virtual size: 286KB

.rsrc
Size: 4KB - Virtual size: 3KB