474011840745ca5405e383b3c8998353[.]bin

General

Target

474011840745ca5405e383b3c8998353.bin
Size

64KB
MD5

474011840745ca5405e383b3c8998353
SHA1

77305ad6f711172ece9474755edede0b2e9ac0c4
SHA256

8e7701f6a4d071142eac4db3b96c48e3e8311b005ce1fb2c0575ed968e57747c
SHA512

625c9bea63a8aef73e7b4412a74aa596eb2ca52505138783985946e3c0e963b364005443aeaa1707a6954a1f8ae23c6f3088338608a8bc97f1bcf8651321dc2b
SSDEEP

1536:Pd9P9XPGUrxREZkYENR9Sg1ihF2gik97sJnrf:3FVzf9R9SQmEbn

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
474011840745ca5405e383b3c8998353.bin

Files

474011840745ca5405e383b3c8998353.bin
.exe windows:4 windows x86 arch:x86

71b156d9af483a20d4032c5fffb29219

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

WritePrivateProfileStringW
FindFirstChangeNotificationW
DuplicateHandle
CloseHandle
CreateFileW
GetTickCount
ResetEvent
SetCurrentDirectoryW
GetFileSize
CreateProcessW
FreeLibrary
GetVersion
GlobalDeleteAtom
Sleep
FindClose
GetProcAddress
WaitForMultipleObjects
FindResourceW
GetModuleHandleW
SetThreadPriority
ResumeThread
SetEvent
LoadLibraryA
VirtualAlloc
GetCurrentProcess
FindNextChangeNotification
GlobalAddAtomW
lstrlenW
GlobalLock
LoadResource

user32

LoadStringW
LoadBitmapW
CreateWindowExW
WindowFromPoint
DefWindowProcW
SetDlgItemTextW
CreatePopupMenu
GetSysColor
LoadIconW
GetWindowRect
SetForegroundWindow
FillRect
RegisterWindowMessageW
DrawTextW
GetWindowTextW
GetWindowThreadProcessId
LoadCursorW
SystemParametersInfoW
GetClassNameW
TranslateMessage
MessageBoxW
EnableWindow

gdi32

GetMapMode
CreatePen
GetClipBox
SetMapMode
Rectangle
CreateRoundRectRgn
GetStockObject
CreateICW
DeleteObject
CreateCompatibleBitmap
SelectObject
GetDeviceCaps
CreateDCW
StretchBlt
CreateSolidBrush
BitBlt

advapi32

RegQueryValueExW
RegNotifyChangeKeyValue
RegDeleteValueW
StartServiceW
RegOpenKeyExW

Sections

.text
Size: 52KB - Virtual size: 49KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

71b156d9af483a20d4032c5fffb29219

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

Sections

.text Size: 52KB - Virtual size: 49KB

.rdata Size: 4KB - Virtual size: 1KB

.data Size: 4KB - Virtual size: 1KB

.text
Size: 52KB - Virtual size: 49KB

.rdata
Size: 4KB - Virtual size: 1KB

.data
Size: 4KB - Virtual size: 1KB