3b0584d8d14473ad39cd6508345f828b

General

Target

3b0584d8d14473ad39cd6508345f828b
Size

3.4MB
MD5

3b0584d8d14473ad39cd6508345f828b
SHA1

55b9baf45762cea5760613cd49f49810b389a079
SHA256

445fc96526357dab58c62c5ae23d4bd4576adfd01508211822f07e0ba1fb5411
SHA512

dac604fd79a04b102a981365c81fa0eeb6323167d7ca0772ddfad15c67f4224e6e5599aa0c61e5a9fe4286500a4a20b9d8e01c6aa2419d7963e8ccde94d04d51
SSDEEP

49152:W9q12oBtDpeDCtImrCJa+84VHeyZSIyMhL6Tq4PFOl/IWK5psf2IQGNpqxe3wDj7:W9G24q9mo84V+yZTyCcqllqm2B+/3q5

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3b0584d8d14473ad39cd6508345f828b

Files

3b0584d8d14473ad39cd6508345f828b
.exe windows:4 windows x86 arch:x86

fc2f280875a52c2edb89cbe6467aa19e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLastError
GetSystemTimeAsFileTime
GetProcAddress
TerminateProcess
UnhandledExceptionFilter
Sleep
GetTickCount
FreeLibrary
MultiByteToWideChar
SetLastError
HeapFree
DeleteCriticalSection
GetProcessHeap
ExitProcess
GetStdHandle
IsDebuggerPresent
GetCommandLineW
FindClose
GetACP
FormatMessageW
GetFileType
TlsGetValue
InitializeCriticalSection
FlushFileBuffers
TlsSetValue
TlsAlloc
HeapSetInformation
HeapSize
TlsFree
SetFilePointer
CompareStringW
GetStringTypeW
InitializeCriticalSectionAndSpinCount
GetEnvironmentStringsW
SetStdHandle
FreeEnvironmentStringsW
IsProcessorFeaturePresent
FindNextFileW
FindFirstFileW
GetConsoleCP
ResetEvent
ReleaseMutex
OutputDebugStringW
GetFileSize
EncodePointer
GetModuleHandleExW
CreateProcessW

user32

TranslateMessage
LoadStringW
DispatchMessageW
ShowWindow
DestroyWindow
ReleaseDC
PostQuitMessage
GetMessageW
GetWindowRect
SendMessageW
GetClientRect
EnableWindow
LoadCursorW
GetParent
EndDialog
SetForegroundWindow
GetSysColor
PeekMessageW
BeginPaint
KillTimer
RegisterClassW
GetWindow
GetWindowTextW
CharUpperW
ClientToScreen

Sections

.data
Size: - Virtual size: 612KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 3.4MB - Virtual size: 3.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.text
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

fc2f280875a52c2edb89cbe6467aa19e

Headers

File Characteristics

Imports

kernel32

user32

Sections

.data Size: - Virtual size: 612KB

.rdata Size: 3.4MB - Virtual size: 3.4MB

.text Size: 6KB - Virtual size: 6KB

.idata Size: 2KB - Virtual size: 1KB

.data
Size: - Virtual size: 612KB

.rdata
Size: 3.4MB - Virtual size: 3.4MB

.text
Size: 6KB - Virtual size: 6KB

.idata
Size: 2KB - Virtual size: 1KB