43797e7896aba0cdb8adc48e5f9af6fd[.]exe

General

Target

43797e7896aba0cdb8adc48e5f9af6fd.exe
Size

46KB
MD5

43797e7896aba0cdb8adc48e5f9af6fd
SHA1

a1033d0b68d0eba3ae0518b81bf44f66c967c4d8
SHA256

5d127a38e613f07bfc80240d1a0e1ad9c1befd974ec50abae7302f4f66ab13bd
SHA512

2cab895deb4733f305e23be426a672e0842b0939148f5ef43c51126ae553321fb4d96093368a9e44dcd6ab0720ae4c0937c5bd82a3a1771bc3b5ef3f242b8966
SSDEEP

768:Qjq8bA/wdTnVPJzccqsE123EwLxg6gqVPqZ9K/CTE4S4QOFmIfDbzcPU:QWb/wVnhecqsv02g6gqVPqw/JCbc

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
43797e7896aba0cdb8adc48e5f9af6fd.exe

Files

43797e7896aba0cdb8adc48e5f9af6fd.exe
.exe windows:5 windows x86 arch:x86

012ca3d61d68ee26fbc6d0880fa25430

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

CloseWindowStation
SendMessageW
GetClassNameW
CloseDesktop
OpenDesktopA
CharLowerBuffA
SetThreadDesktop
GetDlgItemTextW
GetCursorPos
DrawIcon
GetMessageA
MsgWaitForMultipleObjects
GetKeyState
LoadCursorW
PeekMessageA
GetWindowThreadProcessId
ExitWindowsEx
EndDialog
GetForegroundWindow
DispatchMessageW
GetWindowTextW
ToUnicode
PeekMessageW
OpenWindowStationA
GetWindowLongW
GetDlgItemTextA
GetClipboardData
GetDlgItem
SetProcessWindowStation
GetIconInfo
FindWindowExW
GetKeyboardState
GetMessageW

kernel32

SetFilePointer
GetThreadPriority
HeapAlloc
lstrcpyW
GetLastError
GlobalLock
CreateThread
GetModuleFileNameW
GetFileTime
GetVersionExW
ReleaseMutex
GetCommandLineA
GetModuleFileNameA
EnterCriticalSection
CreateFileW
lstrcmpiA
lstrlenW
CreateDirectoryW
GetSystemTimeAsFileTime
CloseHandle
GetCurrentThreadId
GetFileSizeEx
GetCurrentProcessId
GetComputerNameW
LeaveCriticalSection
UnmapViewOfFile
GetUserDefaultUILanguage
GetSystemTime
IsBadReadPtr
OpenMutexW
GetExitCodeProcess
lstrcpynW
CreateProcessW
GlobalUnlock
FindClose
MultiByteToWideChar
SetFileTime
ReadFile
GetTickCount
FlushFileBuffers
HeapReAlloc
ResetEvent
CreateEventW
SystemTimeToFileTime
GetLocalTime
GetLogicalDrives
SetThreadPriority
GetProcessHeap
WideCharToMultiByte
MapViewOfFile
SetLastError
SetEndOfFile
FindResourceW
GetProcessTimes
lstrcatW
lstrlenA
GetTimeZoneInformation
DisconnectNamedPipe

Sections

.fir
Size: 36KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.ytor
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.urwt
Size: 7KB - Virtual size: 76KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

012ca3d61d68ee26fbc6d0880fa25430

Headers

File Characteristics

Imports

user32

kernel32

Sections

.fir Size: 36KB - Virtual size: 56KB

.ytor Size: 2KB - Virtual size: 4KB

.urwt Size: 7KB - Virtual size: 76KB

.fir
Size: 36KB - Virtual size: 56KB

.ytor
Size: 2KB - Virtual size: 4KB

.urwt
Size: 7KB - Virtual size: 76KB