3aaeb2652f351f1acfe3d0bbd5c14066

General

Target

3aaeb2652f351f1acfe3d0bbd5c14066
Size

3.4MB
MD5

3aaeb2652f351f1acfe3d0bbd5c14066
SHA1

6b8cde3ac6267454d9c0ef082462e54d5eb1a43b
SHA256

0d4884ff5c3c7d43f39e9980c92f17020382507d1d673ab737ec58cc2b572102
SHA512

7fba3475893a815fdc75a8aa9577c6719d8ea2dcf8b82138d92022f5d6d662a4e00ce3c23c32892bcc418bbb322be90601d7ba1bb80b2f7918d32f4c2958b02a
SSDEEP

98304:6f9Sf7Q7EMAWfB7OfymgPXafk/DMDlE/X7ZWGZdSuE2:6f9M7Q7EMAWfUanvRMlEzVdS4

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3aaeb2652f351f1acfe3d0bbd5c14066

Files

3aaeb2652f351f1acfe3d0bbd5c14066
.exe windows:4 windows x86 arch:x86

f9a2e4e8757fcc8833c68cb806c63158

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLastError
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
GetModuleHandleW
GetProcAddress
UnhandledExceptionFilter
Sleep
WideCharToMultiByte
CreateFileW
GetModuleFileNameW
GetCommandLineW
ReadFile
FormatMessageW
GetModuleHandleA
FlushFileBuffers
TlsSetValue
TlsAlloc
HeapSize
WriteConsoleW
LoadLibraryExW
GetCPInfo
TlsFree
CompareStringW
GetStringTypeW
RtlUnwind
GetModuleFileNameA
GetEnvironmentStringsW
FreeEnvironmentStringsW
IsValidCodePage
FindFirstFileW
GetConsoleCP
GetCommandLineA
ResetEvent
CreateFileA
lstrlenW
GetModuleHandleExW
CreateDirectoryW
UnmapViewOfFile
GetExitCodeProcess
CreateProcessW

user32

TranslateMessage
LoadStringW
DestroyWindow
DefWindowProcW
MessageBoxW
CreateWindowExW
SetWindowLongW
GetWindowRect
SendMessageW
GetClientRect
SetWindowPos
LoadCursorW
GetParent
EndDialog
SetWindowTextW
SetTimer
EndPaint
ScreenToClient
InvalidateRect
EnableMenuItem
GetWindow
UpdateWindow
GetKeyState
ClientToScreen

Sections

.idata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 3.4MB - Virtual size: 3.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 612KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f9a2e4e8757fcc8833c68cb806c63158

Headers

File Characteristics

Imports

kernel32

user32

Sections

.idata Size: 2KB - Virtual size: 1KB

.rdata Size: 3.4MB - Virtual size: 3.4MB

.data Size: - Virtual size: 612KB

.text Size: 6KB - Virtual size: 6KB

.idata
Size: 2KB - Virtual size: 1KB

.rdata
Size: 3.4MB - Virtual size: 3.4MB

.data
Size: - Virtual size: 612KB

.text
Size: 6KB - Virtual size: 6KB