4153d403f73e273af9e8996f8069afa0

General

Target

4153d403f73e273af9e8996f8069afa0
Size

126KB
MD5

4153d403f73e273af9e8996f8069afa0
SHA1

bca338d6d271e79eed40e3e9a8d966434d0bd50c
SHA256

89330cca30c6c588dcb2999c891b8415b3511bbd259e349c407a91d88488b54a
SHA512

8e89e868b34e5e55bd54be2b2071ba1b4e4a16f771310364e04ed121c0a2440f8f451acf3d84d92032c8702cb2e85f11454ba1bf37fd5a452b846f062b678ff4
SSDEEP

3072:emBaVsl1JC0KeqYnfRvyqLKTD0WLQKCfQU2Hjs/xR3:eO1bRf5LUfGQjs/xR3

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4153d403f73e273af9e8996f8069afa0

Files

4153d403f73e273af9e8996f8069afa0
.exe windows:4 windows x86 arch:x86

30475716894bd00e321d0931d9941267

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

TerminateThread
GetTickCount
GetTimeFormatW
ExitProcess
SetEndOfFile
lstrcpyW
LeaveCriticalSection
GetModuleFileNameW
FindClose
GetSystemInfo
lstrcpynW
GlobalSize
VirtualAlloc
GetProcAddress
LoadLibraryA
LCMapStringA
GetLocaleInfoA
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
QueryPerformanceCounter
HeapSize
MultiByteToWideChar
GetCPInfo
GetOEMCP
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetVersionExA
HeapFree
TerminateProcess
GetCurrentProcess
HeapAlloc
VirtualProtect
VirtualQuery
GetLastError
WideCharToMultiByte
WriteFile
GetStdHandle
GetModuleFileNameA
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
GetFileType
HeapDestroy
HeapCreate
VirtualFree
HeapReAlloc
IsBadWritePtr
GetStringTypeA
GetStringTypeW
RtlUnwind
InterlockedExchange
GetACP
LCMapStringW

user32

DispatchMessageW
EndPaint
SetCapture
MessageBoxW

comdlg32

PrintDlgA

ole32

StgOpenStorageOnILockBytes
StgOpenAsyncDocfileOnIFillLockBytes

Sections

.text
Size: 30KB - Virtual size: 30KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 84KB - Virtual size: 127KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

30475716894bd00e321d0931d9941267

Headers

File Characteristics

Imports

kernel32

user32

comdlg32

ole32

Sections

.text Size: 30KB - Virtual size: 30KB

.rdata Size: 5KB - Virtual size: 5KB

.data Size: 84KB - Virtual size: 127KB

.rsrc Size: 4KB - Virtual size: 4KB

.text
Size: 30KB - Virtual size: 30KB

.rdata
Size: 5KB - Virtual size: 5KB

.data
Size: 84KB - Virtual size: 127KB

.rsrc
Size: 4KB - Virtual size: 4KB