46c9146926079ec8758ac5bd0224995b

General

Target

46c9146926079ec8758ac5bd0224995b
Size

391KB
MD5

46c9146926079ec8758ac5bd0224995b
SHA1

a29cbeaf08522c25b3f97c068dfc82b355a0a357
SHA256

41f417aa00fa861a18f54e89513771cc21951f5b06a7503ba55fc327f654e5ec
SHA512

456218060f597763e20816e987f97333ab5a7d07fb825d3bbd63143cfe058c387cd42e9c323b13d70bbcd98715fc1dd496cbd24905ea97fcdcc74d2c5b415b05
SSDEEP

12288:SrFonLyLv5xEd0MbETZjXVWZ2D+HzcAG5:S5oLyLv5k0MApYZnc/

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
46c9146926079ec8758ac5bd0224995b

Files

46c9146926079ec8758ac5bd0224995b
.exe windows:4 windows x86 arch:x86

7a40b2b98f898551c436abc014d5470a

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

_initterm
_rotl
calloc
memcpy
_vsnprintf
__setusermatherr
??3@YAXPAX@Z
_lseeki64
srand
__dllonexit
exit
malloc
__p__iob
_tell
strrchr
_stat
strlen
_ftol
_chsize
_rotr
__p__osver
_finite

kernel32

InitializeCriticalSectionAndSpinCount
SetUnhandledExceptionFilter
GetCommandLineW
GetEnvironmentStringsW
GetFileAttributesW
Sleep
lstrcatA
GetProcessHeap
IsBadWritePtr
SetFileAttributesA
MapViewOfFile
ReadFile
CreateThread
CreateMutexA
CompareStringA
GetTickCount
GetWindowsDirectoryW
FileTimeToSystemTime
GetSystemTimeAsFileTime
GetDriveTypeW
GetThreadTimes
VirtualProtect
OpenEventW
SystemTimeToFileTime
GetFileType
GetCPInfo
LockResource
WriteConsoleW
GetConsoleMode
GetVersion
GetACP
GetThreadLocale
GetCurrentProcessId
InterlockedDecrement
GetExitCodeThread
TerminateProcess
VirtualAlloc
GetUserDefaultLCID
FormatMessageA
FreeEnvironmentStringsW
GetModuleFileNameW
HeapReAlloc
DeleteFileA
InterlockedIncrement
RaiseException
GetSystemDirectoryW
ReleaseSemaphore
VirtualQuery
GetExitCodeProcess
GlobalFree
FreeLibrary
WriteFile
LoadLibraryExA
SetLastError
CreateFileMappingA
OutputDebugStringW
SetThreadPriority
SetEndOfFile
FindFirstFileW
CreateFileMappingW
GetSystemInfo
GetLocaleInfoW
OpenMutexA
DeleteCriticalSection
FindFirstFileA

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: - Virtual size: 240KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: 289KB - Virtual size: 292KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 98KB - Virtual size: 100KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7a40b2b98f898551c436abc014d5470a

Headers

DLL Characteristics

File Characteristics

Imports

msvcrt

kernel32

Sections

.text Size: 2KB - Virtual size: 2KB

DATA Size: - Virtual size: 240KB

BSS Size: 289KB - Virtual size: 292KB

.rsrc Size: 98KB - Virtual size: 100KB

.text
Size: 2KB - Virtual size: 2KB

DATA
Size: - Virtual size: 240KB

BSS
Size: 289KB - Virtual size: 292KB

.rsrc
Size: 98KB - Virtual size: 100KB