3abaff71773b06ec5d600f82d2a3c283

Sharing

Copy URL Twitter E-mail

General

Target

3abaff71773b06ec5d600f82d2a3c283
Size

156KB
MD5

3abaff71773b06ec5d600f82d2a3c283
SHA1

1665a7de9bcbfc4c010929eea06dcd7fc079a620
SHA256

567f7fb6167bb68e98a98e732e9cac9f1360bece700226108fcfdd946f6a5fa5
SHA512

cb397914c35a178a47a484f7d5428d8b980c468ce98b52828863939e3252ce181ce6f5a66e2229068bba1a4111da22e571eed558f90566a90d0429281067cdc5
SSDEEP

3072:iqTNWIYJO8Ymy57fKpOd2PNrtUWlsPo9Jup28V1/R:igNHYk8YmofU025tPl8

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3abaff71773b06ec5d600f82d2a3c283

Files

3abaff71773b06ec5d600f82d2a3c283
.exe windows:1 windows x86 arch:x86

6b5d89ef0044b4d331c7c0377a5fec2a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetStringTypeA
GlobalUnlock
FreeLibrary
GetModuleFileNameA
ResumeThread
GetExitCodeThread
FindFirstFileA
FileTimeToLocalFileTime
GetStartupInfoA
SetThreadAffinityMask
ExpandEnvironmentStringsA
OpenEventA
GetNumberFormatA
UnhandledExceptionFilter
GetProcessWorkingSetSize
GetVersionExA
MulDiv
lstrcpynA
SizeofResource
GetDriveTypeA
SetUnhandledExceptionFilter
GetConsoleCP
SetLastError
GetProcessAffinityMask
FormatMessageA
SetFilePointer
UnmapViewOfFile
SetHandleCount
GetOEMCP
SetProcessWorkingSetSize
SetEndOfFile
CreateFileA
FlushFileBuffers
TlsSetValue
LCMapStringA
TlsAlloc
SetEnvironmentVariableA
TerminateThread
IsValidCodePage
GetThreadContext
HeapSize
RaiseException
GetCommandLineW
CreateProcessA
GetFileAttributesA
DeviceIoControl
MapViewOfFile
lstrcpyA
CreateFileMappingA
FreeEnvironmentStringsA
ResetEvent
FileTimeToSystemTime
WriteFile
FindClose
DuplicateHandle
GlobalMemoryStatus
VirtualQueryEx
GetFileType
lstrlenW
GetLastError
LockResource
CreateThread
QueryPerformanceCounter
Sleep
FreeEnvironmentStringsW
GetCurrentThreadId
GetModuleHandleA
GetConsoleMode
TlsFree
InterlockedIncrement
LeaveCriticalSection
HeapAlloc
InterlockedDecrement
GlobalReAlloc
GetCurrentDirectoryA
LCMapStringW
GlobalAlloc
DeleteCriticalSection
InitializeCriticalSection
WideCharToMultiByte
GetConsoleOutputCP
lstrcmpiA
GetEnvironmentStringsW
GetStringTypeW
CreateToolhelp32Snapshot
GetStdHandle
LoadLibraryW
LocalFree
Module32First
SetErrorMode
VirtualAlloc
GetCurrentProcessId
MultiByteToWideChar
IsBadReadPtr
TlsGetValue
ExitThread
PulseEvent
OpenProcess
GetCurrentThread
lstrcmpA
lstrcatA
GlobalAddAtomA
GetACP
FindResourceA
Module32Next
ReadProcessMemory
GetSystemDirectoryA

user32

EndPaint
LoadAcceleratorsA
SetClassLongA
DrawEdge
GetParent
ExitWindowsEx
TrackPopupMenu
GetSysColorBrush
GetSystemMetrics
InsertMenuA
GetSubMenu
InvalidateRect
GetDoubleClickTime
SetScrollInfo
PtInRect
SetUserObjectSecurity
RedrawWindow
DialogBoxParamA
SetMenuItemInfoA
GetDC
GetWindowPlacement
LoadIconA
GetPropA
MsgWaitForMultipleObjects
GetUserObjectSecurity
KillTimer
InflateRect
GetUpdateRgn
DrawTextA
DeleteMenu
SetWindowPlacement
UnionRect
CheckDlgButton
GetFocus
GetWindowLongA
ChildWindowFromPoint
TranslateMessage
IsIconic
CreateDialogParamA
AppendMenuA
CheckMenuItem
IntersectRect
CallWindowProcA
SendMessageA
MessageBoxA
CreateMenu
GetCapture
DestroyWindow
SetTimer
CloseClipboard
SetWindowLongA
DeferWindowPos
CreateIconIndirect
GetWindowTextA
MoveWindow
RegisterClassExA
PostMessageA
GetKeyState
BeginPaint
ShowWindow
ScreenToClient
SetPropA
ReleaseCapture
GetClientRect
FrameRect
GetMenuItemCount
GetMessageA
WindowFromPoint
ScrollWindowEx
GetSysColor
ReleaseDC
IsZoomed
GetWindow
GetClassLongA
IsDialogMessageA
GetDlgCtrlID
GetScrollInfo
EnableWindow
EndDeferWindowPos
DefDlgProcA
CheckRadioButton
DispatchMessageA
EnableMenuItem
SystemParametersInfoA
LoadMenuA
DrawFrameControl
PostQuitMessage
GetWindowRect
SetCursor
GetMenu
InvalidateRgn
SetWindowPos
LoadImageA
FindWindowExA
ClientToScreen
IsDlgButtonChecked

msvcrt

__p__commode
__setusermatherr
__getmainargs
_adjust_fdiv
_acmdln
_initterm
_controlfp
__p__fmode
_except_handler3
memcpy
exit
_XcptFilter
_exit
__set_app_type

Sections

.text
Size: 22KB - Virtual size: 22KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 131KB - Virtual size: 131KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 84B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 164B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6b5d89ef0044b4d331c7c0377a5fec2a

Headers

File Characteristics

Imports

kernel32

user32

msvcrt

Sections

.text Size: 22KB - Virtual size: 22KB

.rdata Size: 131KB - Virtual size: 131KB

.data Size: 512B - Virtual size: 84B

.rsrc Size: 512B - Virtual size: 164B

.text
Size: 22KB - Virtual size: 22KB

.rdata
Size: 131KB - Virtual size: 131KB

.data
Size: 512B - Virtual size: 84B

.rsrc
Size: 512B - Virtual size: 164B