473aa9bed7a46c914b0a2c52564c468b

General

Target

473aa9bed7a46c914b0a2c52564c468b
Size

237KB
MD5

473aa9bed7a46c914b0a2c52564c468b
SHA1

64fe99895cd9c163c8584d3c4438617fbb5077c9
SHA256

99cab633a02f2573e8b9ceb509c4ce75d83a61a11bf1d17adf222149e7f4a4f9
SHA512

f1b1c6c03abc6fd9f75e58275682f14a3b2fc310c82b54450e9e686785fbb5e03b46b267ed47805db33780ced36937d1f0b21aecd9fed3ffebf7b33d26b48431
SSDEEP

3072:FhjCLxlqgWIX5M6mYARFrivokHUrYVjdQXq97PDPmOtdR6R4o+GFZkMBH0TuUZ8:FhjrPFQok0rYXbDPzDUh+EZkMBH0Ta

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
473aa9bed7a46c914b0a2c52564c468b

Files

473aa9bed7a46c914b0a2c52564c468b
.exe windows:4 windows x86 arch:x86

5663ed710e3979b30672f1b92691f5da

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

HeapDestroy
TerminateProcess
GetCurrentProcess
GetCommandLineA
GetVersion
HeapFree
HeapAlloc
GetLastError
DeleteFileA
CloseHandle
GetFileType
CreateFileA
WideCharToMultiByte
RtlUnwind
UnhandledExceptionFilter
GetModuleFileNameA
FreeEnvironmentStringsA
MultiByteToWideChar
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCPInfo
GetACP
GetOEMCP
SetHandleCount
GetStdHandle
GetStartupInfoA
ExitProcess
HeapCreate
VirtualFree
WriteFile
VirtualAlloc
FlushFileBuffers
SetFilePointer
ReadFile
SetStdHandle
SetEndOfFile
GetFileAttributesA
GetCurrentProcessId
GetProcAddress
GetModuleHandleA
GetStringTypeA
GetStringTypeW
CompareStringA
CompareStringW
SetEnvironmentVariableA
LoadLibraryA
HeapReAlloc
LCMapStringA
LCMapStringW
GetCurrentDirectoryA
GetFullPathNameA
GetDriveTypeA
SetConsoleCtrlHandler

Sections

.text
Size: 74KB - Virtual size: 73KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 9KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

�|�
Size: 144KB - Virtual size: 144KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

5663ed710e3979b30672f1b92691f5da

Headers

File Characteristics

Imports

kernel32

Sections

.text Size: 74KB - Virtual size: 73KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 9KB - Virtual size: 27KB

.idata Size: 1KB - Virtual size: 1KB

.reloc Size: 5KB - Virtual size: 5KB

�|� Size: 144KB - Virtual size: 144KB

.text
Size: 74KB - Virtual size: 73KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 9KB - Virtual size: 27KB

.idata
Size: 1KB - Virtual size: 1KB

.reloc
Size: 5KB - Virtual size: 5KB

�|�
Size: 144KB - Virtual size: 144KB