4ccae093b87d7391dc2b2a7ba1d96d46

General

Target

4ccae093b87d7391dc2b2a7ba1d96d46
Size

257KB
MD5

4ccae093b87d7391dc2b2a7ba1d96d46
SHA1

09648384e69cb12641930a26b4c22c495adb0cf9
SHA256

4e2a36f7049514007da3c41423fb9d9f4d87e9291b4d38eae85600e9b8fcfd40
SHA512

ef9e8c70ae804daf0550263079ea305386938006982e3dfb89ce5576ecb00c35164da23750c3aa0581a907e22ffec00c6ddd5c35fc48b1533adac8d4b05ae540
SSDEEP

6144:vMcfBiNcISal7O8p7v7govJRxw9F4U+sAz4KT5ObVOJzit:U6E9Sal7O8p7j/724bEmz

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4ccae093b87d7391dc2b2a7ba1d96d46

Files

4ccae093b87d7391dc2b2a7ba1d96d46
.exe windows:4 windows x86 arch:x86

e1d4d28d738da4f61aaf7a57121818c0

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

HeapSize
LeaveCriticalSection
SetEnvironmentVariableA
GetCommandLineW
GetProcAddress
SetHandleCount
HeapReAlloc
TlsAlloc
GetCurrentThread
HeapCreate
GetCurrentProcessId
HeapAlloc
FreeEnvironmentStringsA
GetStartupInfoA
VirtualFree
GetModuleHandleA
SetLastError
MoveFileA
CompareStringA
UnhandledExceptionFilter
GetStringTypeA
IsValidLocale
GetEnvironmentStrings
IsValidCodePage
TlsFree
EnumSystemLocalesA
GetUserDefaultLCID
DeleteCriticalSection
EnumDateFormatsW
ExitProcess
GetTickCount
CompareStringW
LCMapStringA
HeapFree
GetLocaleInfoA
GetModuleFileNameA
InitializeCriticalSection
LoadLibraryA
QueryPerformanceCounter
GetLastError
VirtualAlloc
FillConsoleOutputAttribute
GetDateFormatA
VirtualQuery
GetCurrentProcess
TerminateProcess
GetCurrentThreadId
RtlUnwind
GetLocaleInfoW
GetStartupInfoW
GetSystemInfo
VirtualProtect
InterlockedIncrement
MultiByteToWideChar
GetEnvironmentStringsW
GetSystemTimeAsFileTime
GetModuleFileNameW
GetCPInfo
GetTimeFormatA
GetOEMCP
GetStdHandle
GetACP
WriteFile
TlsGetValue
IsBadWritePtr
FreeEnvironmentStringsW
GetStringTypeW
WideCharToMultiByte
EnterCriticalSection
LCMapStringW
GetCommandLineA
GetTimeZoneInformation
CreateWaitableTimerW
InterlockedExchange
HeapDestroy
GetVersionExA
GetFileType
TlsSetValue

comdlg32

ChooseFontW
GetSaveFileNameA
GetOpenFileNameA

Sections

.text
Size: 109KB - Virtual size: 108KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 135KB - Virtual size: 161KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e1d4d28d738da4f61aaf7a57121818c0

Headers

File Characteristics

Imports

kernel32

comdlg32

Sections

.text Size: 109KB - Virtual size: 108KB

.data Size: 135KB - Virtual size: 161KB

.rsrc Size: 12KB - Virtual size: 11KB

.text
Size: 109KB - Virtual size: 108KB

.data
Size: 135KB - Virtual size: 161KB

.rsrc
Size: 12KB - Virtual size: 11KB