3ffbd2e277e2049dc5d3d32a58d5c506

General

Target

3ffbd2e277e2049dc5d3d32a58d5c506
Size

59KB
MD5

3ffbd2e277e2049dc5d3d32a58d5c506
SHA1

c84cbe02b919503075d907d5c0b84cc34ead7062
SHA256

d356dcfc78773d1484afc8fbdec232b848519884efef88b56fe1206292fa57e6
SHA512

cddb604000e7479a2a8dfe1dc584709a2db51f53387051ff2aca5a95be5d67fd93069f8435f8b057ae5bf594658eae4ea80bdfba1781643d3fb6467e2a1ca5fe
SSDEEP

768:9TaQmrAO7z6rQnA0WhQixUJEZ6CjKDgwfNJ1H5ZR:41WrEHWj+JHc6nl

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3ffbd2e277e2049dc5d3d32a58d5c506

Files

3ffbd2e277e2049dc5d3d32a58d5c506
.exe .vbs windows:1 windows x86 arch:x86 polyglot

7041f07710d7b8d557933d980041e35f

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE

Imports

user32

CharUpperA
MessageBoxA

kernel32

CloseHandle
CopyFileA
CreateDirectoryA
CreateEventA
CreateFileA
CreateMutexA
CreateProcessA
CreateThread
DeleteCriticalSection
EnterCriticalSection
ExitProcess
ExitThread
FlushFileBuffers
GetACP
GetCPInfo
GetCommandLineA
GetCommandLineW
GetCurrentProcess
GetCurrentThreadId
GetFileType
GetLastError
GetModuleFileNameA
GetModuleFileNameW
GetModuleHandleA
GetOEMCP
GetProcAddress
GetStdHandle
GetVersion
InitializeCriticalSection
LeaveCriticalSection
LoadLibraryA
MultiByteToWideChar
ResumeThread
SetConsoleCtrlHandler
SetEnvironmentVariableA
SetFilePointer
SetLastError
SetStdHandle
SetUnhandledExceptionFilter
TerminateProcess
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue
UnhandledExceptionFilter
VirtualAlloc
VirtualFree
VirtualQuery
WaitForSingleObject
WriteFile

ws2_32

shutdown
sendto
setsockopt
socket
htons
inet_addr

winhttp

WinHttpCloseHandle
WinHttpConnect
WinHttpOpen
WinHttpOpenRequest
WinHttpQueryDataAvailable
WinHttpReadData
WinHttpReceiveResponse
WinHttpSendRequest
WinHttpSetTimeouts

Sections

AUTO
Size: 29KB - Virtual size: 29KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

DGROUP
Size: 24KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 2KB - Virtual size:

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7041f07710d7b8d557933d980041e35f

Headers

File Characteristics

Imports

user32

kernel32

ws2_32

winhttp

Sections

AUTO Size: 29KB - Virtual size: 29KB

.idata Size: 2KB - Virtual size: 1KB

DGROUP Size: 24KB - Virtual size: 28KB

.reloc Size: 2KB - Virtual size:

AUTO
Size: 29KB - Virtual size: 29KB

.idata
Size: 2KB - Virtual size: 1KB

DGROUP
Size: 24KB - Virtual size: 28KB

.reloc
Size: 2KB - Virtual size: