491d4274af4acb78ac6566a7d91df5f6

Sharing

Copy URL Twitter E-mail

General

Target

491d4274af4acb78ac6566a7d91df5f6
Size

516KB
MD5

491d4274af4acb78ac6566a7d91df5f6
SHA1

1f9fa39b79a7a63a0684a8e1f335e911b872bbeb
SHA256

1802d4b47b9c442ebf5be279e2492dcef0f33331c6e43751fe1f4c1affc3426f
SHA512

7b069ecaa82d874f11d86f0460781e4b5dd9e30bcd19024c228d37b62c75eeab58e9a52378f9b5d19f286af08a2d16944bc9e02c20a66ef5859df489718bd927
SSDEEP

12288:4kEsHL2kEszkEsPkEskonBkEstSvkEsJ0EVykEsUZkEsEdcpn8:1/zAUMFV/htzsdcpn8

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
491d4274af4acb78ac6566a7d91df5f6

Files

491d4274af4acb78ac6566a7d91df5f6
.exe windows:5 windows x86 arch:x86

c401682ba2cd4af1b0ced16345e8c5cd

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

msacm32

acmMetrics

msvcrt

_controlfp
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
_initterm
__getmainargs
_acmdln
exit
_XcptFilter
_exit
_except_handler3
__setusermatherr
memset

kernel32

GetProcessHeap
GetModuleHandleA
GetCommandLineA
LoadLibraryA
GetTickCount
InitializeCriticalSection
GetVersion
WriteFile
WriteConsoleW
WideCharToMultiByte
WaitForSingleObjectEx
TerminateProcess
SystemTimeToTzSpecificLocalTime
SystemTimeToFileTime
Sleep
SizeofResource
SetUnhandledExceptionFilter
SetLastError
SetFileTime
SetFilePointer
GetOEMCP
ExitProcess
CallNamedPipeW
CloseHandle
CreateDirectoryW
CreateEventW
CreateFileW
DeleteCriticalSection
DeleteFileW
DeviceIoControl
DisconnectNamedPipe
DosDateTimeToFileTime
EnterCriticalSection
ExpandEnvironmentStringsW
FileTimeToDosDateTime
FileTimeToLocalFileTime
FileTimeToSystemTime
FindClose
FindFirstFileW
FindNextFileW
FindResourceExW
FindResourceW
FlushFileBuffers
FormatMessageW
GetConsoleScreenBufferInfo
GetCurrentDirectoryW
GetCurrentProcessId
GetCurrentThreadId
GetDateFormatW
GetDiskFreeSpaceExW
GetDiskFreeSpaceW
GetDriveTypeW
GetEnvironmentVariableW
GetFileAttributesW
GetFileSize
GetFileTime
GetLastError
GetLocaleInfoW
GetLocalTime
GetModuleFileNameW
GetModuleHandleW
GetPrivateProfileIntW
GetProcAddress
SetFileAttributesW
GetShortPathNameW
GetStdHandle
GetSystemDirectoryW
GetSystemTimeAsFileTime
GetTimeFormatW
HeapAlloc
HeapDestroy
HeapFree
HeapReAlloc
HeapSize
IsProcessorFeaturePresent
LeaveCriticalSection
LoadResource
LocalAlloc
LocalFree
LockResource
lstrlenA
lstrlenW
MoveFileW
MultiByteToWideChar
OutputDebugStringW
QueryPerformanceCounter
RaiseException
ReadFile
RemoveDirectoryW
ResetEvent
SetEndOfFile
SetErrorMode
SetEvent
GetStartupInfoA

user32

CharUpperW
FindWindowExW
LoadStringW
RegisterWindowMessageW
CharPrevW
GetWindowLongW
GetDesktopWindow
SendMessageTimeoutW

oleaut32

GetErrorInfo

Sections

.text
Size: 424KB - Virtual size: 422KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 12.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data1
Size: 4KB - Virtual size: 648B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.sif
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 72KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c401682ba2cd4af1b0ced16345e8c5cd

Headers

File Characteristics

Imports

msacm32

msvcrt

kernel32

user32

oleaut32

Sections

.text Size: 424KB - Virtual size: 422KB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 4KB - Virtual size: 12.1MB

.data1 Size: 4KB - Virtual size: 648B

.sif Size: 4KB - Virtual size: 3KB

.rsrc Size: 72KB - Virtual size: 68KB

.text
Size: 424KB - Virtual size: 422KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 4KB - Virtual size: 12.1MB

.data1
Size: 4KB - Virtual size: 648B

.sif
Size: 4KB - Virtual size: 3KB

.rsrc
Size: 72KB - Virtual size: 68KB