3bf753288408676a965db5dda5d33adf

General

Target

3bf753288408676a965db5dda5d33adf
Size

804KB
MD5

3bf753288408676a965db5dda5d33adf
SHA1

d896206ae19dbe2d738553f8e4eff9abaa3fded9
SHA256

43b9cae5f6b980775f4ac778b0ebd5def384a5cbc39f8d1f462790860530e849
SHA512

cf39a900e3bf24f6f0c126792aa715114650bac3d2c3d6cf12f26805c528ea40d674b7f84c4ddd5af4f78b760339a5900963ad3b3f16c1c386c95f0f6c911e98
SSDEEP

24576:I/MgbGEX00vMvtYRDpF6DdCv0HqOPYPokWf20:IrbGEZYYRA00HaPmft

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3bf753288408676a965db5dda5d33adf

Files

3bf753288408676a965db5dda5d33adf
.exe windows:4 windows x86 arch:x86

0a727023ea7914e850aeebb52638cf48

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

DefWindowProcA
GetWindowRect
EnableWindow
LoadCursorA
TrackPopupMenu
SetForegroundWindow

kernel32

SetEnvironmentVariableA
HeapFree
EnterCriticalSection
SetHandleCount
WaitForSingleObject
GetDriveTypeA
GetEnvironmentStringsW
GetLastError
GetModuleHandleA
GetCurrentThreadId
GetCurrentThread
GetVersion
GetTickCount
GetCommandLineA
GetCurrentProcessId
ExitProcess
HeapAlloc
GetProcessHeap
LeaveCriticalSection
SetLastError
GetFileSize
VirtualAlloc
GetLocaleInfoA
SetEndOfFile
GetFileType
Sleep
FindClose
VirtualFree
FindResourceW
HeapCreate
InitializeCriticalSection
FreeLibrary
HeapReAlloc
GetACP
CloseHandle
GetCurrentProcess
WriteFile
ReadFile
SetFilePointer
GetStringTypeA
MapViewOfFile
WideCharToMultiByte
CompareStringW
InterlockedExchange
SetStdHandle
GetModuleFileNameA
FreeEnvironmentStringsW
LoadLibraryExW
UnhandledExceptionFilter
LocalAlloc
GetConsoleMode
GetStartupInfoA
DeleteCriticalSection
DuplicateHandle
LoadLibraryA
IsDebuggerPresent

Sections

.text
Size: 761KB - Virtual size: 1.1MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 27KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0a727023ea7914e850aeebb52638cf48

Headers

File Characteristics

Imports

user32

kernel32

Sections

.text Size: 761KB - Virtual size: 1.1MB

.rdata Size: 3KB - Virtual size: 2KB

.data Size: 27KB - Virtual size: 27KB

.rsrc Size: 10KB - Virtual size: 9KB

.text
Size: 761KB - Virtual size: 1.1MB

.rdata
Size: 3KB - Virtual size: 2KB

.data
Size: 27KB - Virtual size: 27KB

.rsrc
Size: 10KB - Virtual size: 9KB