4227f750e1100d12a9e10e61e91ce196

General

Target

4227f750e1100d12a9e10e61e91ce196
Size

248KB
MD5

4227f750e1100d12a9e10e61e91ce196
SHA1

e3426b83c51d18be97aea299b68583c9ba6357d1
SHA256

818db97d7a568019902b9d4e806fe9057ac6890eec1a8b1a316110f6fdce1bf1
SHA512

df146341b0797e66015f22cc6d4a88bb5f25ee893e64e0c92f1caf7d0aa0c3e931a4d30ae674f8760381e59bc8297e0dcd3392e0ccfabad25e63546cfc449fbb
SSDEEP

3072:BrOadf7aLRd/RakfwlTxlZVpmdGSi2zrq2IFB25llJlHy66s6MCt+5JBh0qtLUU8:BrOiGXZrirUdGsnqzu5llB6tZoM241b

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4227f750e1100d12a9e10e61e91ce196

Files

4227f750e1100d12a9e10e61e91ce196
.exe windows:4 windows x86 arch:x86

806e955bb8317300d871a0a32c6f8027

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCommandLineA
GetFileType
GetCommandLineA
WideCharToMultiByte
GetCommandLineA
GetCPInfo
GetCommandLineA
lstrcpynA
GetCommandLineA
lstrcatA
GetCommandLineA
GetConsoleCP
GetCommandLineA
FreeLibrary
GetCommandLineA
ExitProcess
GetCommandLineA
GetLastError
GetCommandLineA
lstrcmpA
GetConsoleCP
GetFileAttributesA
GetFileSize
GetStdHandle
FreeLibrary
GetModuleFileNameA
Sleep
WideCharToMultiByte
GetDateFormatA
lstrcmpA
GetFileType
GetCPInfo
lstrcmpiA
GetLastError
HeapAlloc
lstrcpyA
GlobalFree

user32

IsWindow
AppendMenuW
CopyRect
DialogBoxParamA
DrawIcon
GetWindowTextA
LoadCursorA
BlockInput
AlignRects
LoadMenuA
GetDlgItem
CloseWindow
GetWindowTextLengthA
IsMenu
InsertMenuA
AppendMenuA
DrawTextW
DrawIconEx
GetDC

advapi32

RegOpenKeyA
RegCreateKeyExA
RegEnumValueW
RegQueryInfoKeyW
RegEnumKeyW
RegQueryValueA
RegQueryValueExA
RegDeleteValueA
RegCreateKeyW
RegDeleteKeyW
RegQueryValueW
RegLoadKeyA
RegQueryValueExW
RegEnumKeyExA
RegCreateKeyExW
RegReplaceKeyA
RegGetKeySecurity

Sections

.tadt
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 217KB - Virtual size: 216KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.eaata
Size: 11KB - Virtual size: 46KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idaaa
Size: 1024B - Virtual size: 1KB

IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

806e955bb8317300d871a0a32c6f8027

Headers

File Characteristics

Imports

kernel32

user32

advapi32

Sections

.tadt Size: 10KB - Virtual size: 10KB

.rdata Size: 217KB - Virtual size: 216KB

.eaata Size: 11KB - Virtual size: 46KB

.reloc Size: 4KB - Virtual size: 5KB

.idaaa Size: 1024B - Virtual size: 1KB

.tadt
Size: 10KB - Virtual size: 10KB

.rdata
Size: 217KB - Virtual size: 216KB

.eaata
Size: 11KB - Virtual size: 46KB

.reloc
Size: 4KB - Virtual size: 5KB

.idaaa
Size: 1024B - Virtual size: 1KB