aec982b8efcd1775b82865f2dd0da1dc[.]exe

General

Target

aec982b8efcd1775b82865f2dd0da1dc.exe
Size

384KB
MD5

aec982b8efcd1775b82865f2dd0da1dc
SHA1

522b86afb72073ec9c3885d1296109a3c4ca48b9
SHA256

e8ce54a743b774af7d2fd57bed5363c3969d2f9ae80cacc8c6b06948384c8548
SHA512

6701a49ee1ecbd33a6d93bda5a81ebce58e002780757fe05f0a09d52a0771d41a24b0bea16656d68667200c542a774a317352063015984f54f9efb12fe2d1d1c
SSDEEP

6144:gNmfzsqYdxb2J/bnATj3uABV+UdvrEFp7hK8:dzsqYd52J/bIj3uABjvrEH7j

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
aec982b8efcd1775b82865f2dd0da1dc.exe

Files

aec982b8efcd1775b82865f2dd0da1dc.exe
.exe windows:4 windows x86 arch:x86

f73e15bfa9d2f6241074940af7098182

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetTimeZoneInformation
GetSystemTime
GetLocalTime
IsBadWritePtr
IsBadReadPtr
HeapValidate
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetVersion
ExitProcess
EnterCriticalSection
LeaveCriticalSection
DebugBreak
GetStdHandle
WriteFile
InterlockedDecrement
OutputDebugStringA
GetProcAddress
LoadLibraryA
InterlockedIncrement
GetModuleFileNameA
GetLastError
CloseHandle
FlushFileBuffers
InitializeCriticalSection
DeleteCriticalSection
FatalAppExitA
WideCharToMultiByte
HeapAlloc
HeapReAlloc
HeapFree
HeapDestroy
HeapCreate
VirtualFree
TerminateProcess
GetCurrentProcess
VirtualAlloc
ReadFile
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetFileType
GetCurrentThreadId
TlsSetValue
TlsAlloc
TlsFree
SetLastError
TlsGetValue
GetCurrentThread
RtlUnwind
SetConsoleCtrlHandler
SetStdHandle
SetFilePointer
CreateFileA
MultiByteToWideChar
GetStringTypeA
GetStringTypeW
GetCPInfo
GetACP
GetOEMCP
Sleep
SetEndOfFile
RaiseException
LCMapStringA
LCMapStringW
IsValidLocale
IsValidCodePage
GetLocaleInfoA
EnumSystemLocalesA
GetUserDefaultLCID
GetVersionExA
CompareStringA
CompareStringW
SetEnvironmentVariableA
GetLocaleInfoW

Sections

.text
Size: 260KB - Virtual size: 258KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f73e15bfa9d2f6241074940af7098182

Headers

File Characteristics

Imports

kernel32

Sections

.text Size: 260KB - Virtual size: 258KB

.rdata Size: 12KB - Virtual size: 9KB

.data Size: 16KB - Virtual size: 23KB

.idata Size: 4KB - Virtual size: 2KB

.reloc Size: 12KB - Virtual size: 11KB

.text
Size: 260KB - Virtual size: 258KB

.rdata
Size: 12KB - Virtual size: 9KB

.data
Size: 16KB - Virtual size: 23KB

.idata
Size: 4KB - Virtual size: 2KB

.reloc
Size: 12KB - Virtual size: 11KB