4affa7509487227424985d8f5fba6e21

General

Target

4affa7509487227424985d8f5fba6e21
Size

142KB
MD5

4affa7509487227424985d8f5fba6e21
SHA1

9143b84418b3e586699c7b5012e6c49632b248a7
SHA256

c26448006abe2e8a90c3ccb24e52092f016ef9bdc9cacb24a2c44bda8969b00d
SHA512

dfedc3ebae6791893979b6a7886e01a7fc06fc0cfa4656038c6582e51ffe95b79b554580d36d7cc56486b812391e77930c55e011a5d9235265b1deaee3480248
SSDEEP

3072:gGXza9FuuiYdyc1gBa4BM6GvNbTclN5SCaDx4cSM:dDa9FuODqGvNPcv7ISM

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4affa7509487227424985d8f5fba6e21

Files

4affa7509487227424985d8f5fba6e21
.exe windows:4 windows x86 arch:x86

0bae310c85e89e4ead0b6b1c9ec529a8

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetStringTypeA
HeapAlloc
GetFileType
GlobalFree
GetFileSize
GetOEMCP
GetCurrentProcessId
ExitProcess
GetCommandLineA
HeapFree
lstrcmpiA
GetModuleHandleA
lstrcatA
GetModuleFileNameA
GetCurrentProcess
FreeLibrary
GetCurrentThread
lstrcpynA
GetLastError
GlobalAlloc
DeleteFileA
GetCurrentThread
DeleteFileA
GetCurrentThreadId
DeleteFileA
GetOEMCP
DeleteFileA
GetCommandLineA
DeleteFileA
lstrcpynA
DeleteFileA
lstrcmpiA
DeleteFileA
GetModuleFileNameA
DeleteFileA
GetLocalTime
DeleteFileA
GetFileType
DeleteFileA
ExitProcess
GlobalFree
lstrcpynA
lstrcpyA
GetConsoleOutputCP
GetFileSize
DeleteFileA
GetCurrentThread
GetCurrentProcessId
lstrcatA
GlobalAlloc
GetCurrentProcess
GetFileType
GetCurrentThreadId
Sleep
FreeLibrary
GetFileAttributesA

user32

GetWindowTextA
EndDialog
IsWindow
CreateIcon
AlignRects
CalcMenuBar
GetFocus
DrawTextA
CloseWindow
DrawIconEx
GetDC
GetMenu
LoadMenuA
IsMenu
LoadCursorA
AppendMenuW
DrawTextW
DialogBoxParamW
GetCursor
GetDlgItem
DialogBoxParamA
DrawIcon
EndDialog
InsertMenuA
CopyIcon
AlignRects
DrawTextA
GetWindowTextLengthA
IsMenu
DialogBoxParamW
GetFocus
GetWindowTextA
GetMenu
CreateIcon
CloseWindow
CopyImage
AppendMenuW
BlockInput
GetDC
AppendMenuA

Sections

.teat
Size: 18KB - Virtual size: 18KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.radta
Size: 109KB - Virtual size: 109KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.eddda
Size: 4KB - Virtual size: 109KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bas
Size: - Virtual size: 565B

IMAGE_SCN_MEM_READ

.rdac
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0bae310c85e89e4ead0b6b1c9ec529a8

Headers

File Characteristics

Imports

kernel32

user32

Sections

.teat Size: 18KB - Virtual size: 18KB

.radta Size: 109KB - Virtual size: 109KB

.eddda Size: 4KB - Virtual size: 109KB

.bas Size: - Virtual size: 565B

.rdac Size: 6KB - Virtual size: 5KB

.teat
Size: 18KB - Virtual size: 18KB

.radta
Size: 109KB - Virtual size: 109KB

.eddda
Size: 4KB - Virtual size: 109KB

.bas
Size: - Virtual size: 565B

.rdac
Size: 6KB - Virtual size: 5KB