3f8bc94273fca7f19def8998d171a2b4

General

Target

3f8bc94273fca7f19def8998d171a2b4
Size

3.4MB
MD5

3f8bc94273fca7f19def8998d171a2b4
SHA1

0aa6e30de5d6241b4f3d6ceddae19b3b05f6d80f
SHA256

06be235a65cff7907fdec72ed3d7b1a5d5c2f9e4a53090ffffb25f3c0998ae3c
SHA512

97c75e8b1b9f503d3d95f43847a17c7cf3801b67fb81a7855ded61e8f8e55caf9704c019b175c123dbaca32e0ffb8593d8ddc46c229d1f8ffe6730a461357af0
SSDEEP

49152:7NTO4A04L0Nodo/fZJJZfOVZg2K3NoEe7gy4DKn2Fvi19lk7GvG1G3jMZMDNbbB9:5A04bdEJSzK9CxzF2QG4XZBDW

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3f8bc94273fca7f19def8998d171a2b4

Files

3f8bc94273fca7f19def8998d171a2b4
.exe windows:4 windows x86 arch:x86

39fefc8c586c1c17519847b4fb64d708

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLastError
GetCurrentProcessId
SetUnhandledExceptionFilter
GetModuleHandleW
QueryPerformanceCounter
TerminateProcess
FreeLibrary
MultiByteToWideChar
WideCharToMultiByte
SetLastError
LocalFree
CreateFileW
ExitProcess
GetModuleFileNameW
GetStdHandle
IsDebuggerPresent
GetCommandLineW
FindClose
ReadFile
RaiseException
SetEvent
GetACP
GetFileType
HeapReAlloc
GetConsoleMode
TlsSetValue
WriteConsoleW
LoadLibraryW
GetCPInfo
TlsFree
SetFilePointer
GetFileAttributesW
GetStringTypeW
RtlUnwind
FreeEnvironmentStringsW
FindNextFileW
IsValidCodePage
FindFirstFileW
DeleteFileW
VirtualAlloc
GetConsoleCP
LocalAlloc
GetCommandLineA
ReleaseMutex
OutputDebugStringW
EncodePointer
VirtualFree
lstrlenW
GetLocaleInfoW
LoadResource
UnmapViewOfFile
ExpandEnvironmentStringsW

user32

LoadStringW
ShowWindow
DestroyWindow
ReleaseDC
MessageBoxW
GetSystemMetrics
GetWindowRect
SetWindowPos
IsWindow
LoadCursorW
GetParent
SetTimer
SetFocus
SetForegroundWindow
PeekMessageW
EndPaint
SetCursor
KillTimer
EnableMenuItem
GetWindowTextW
SystemParametersInfoW
GetKeyState
MessageBoxA
CharUpperW
ClientToScreen

Sections

.data
Size: - Virtual size: 612KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 3.4MB - Virtual size: 3.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

39fefc8c586c1c17519847b4fb64d708

Headers

File Characteristics

Imports

kernel32

user32

Sections

.data Size: - Virtual size: 612KB

.text Size: 6KB - Virtual size: 6KB

.idata Size: 2KB - Virtual size: 1KB

.rdata Size: 3.4MB - Virtual size: 3.4MB

.data
Size: - Virtual size: 612KB

.text
Size: 6KB - Virtual size: 6KB

.idata
Size: 2KB - Virtual size: 1KB

.rdata
Size: 3.4MB - Virtual size: 3.4MB