4bb0a7eff233965a0e08508ce3894414

Sharing

Copy URL Twitter E-mail

General

Target

4bb0a7eff233965a0e08508ce3894414
Size

322KB
MD5

4bb0a7eff233965a0e08508ce3894414
SHA1

9c5e17a21235f90dff3dabf89856ff79174e5d72
SHA256

e24df9ba1ad5d7973bbe5f460561a461d7d7269d5a5ebd86f6960eccd9c4704e
SHA512

39beca24090ab1c1bcbe6eedc69f25271f2d4df2055ed5f06a7c3af1a0d20ad10a77fc87c650f2e2f4267c5c8325b53afb8abb2f8866b6ba75fdf4dce7eabbb9
SSDEEP

6144:TJFLGHJe1L0JbpB6y6k/G6u4yaYTjfjLhMf:dFaHULWbpB6jk/3u4yRjfBM

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4bb0a7eff233965a0e08508ce3894414

Files

4bb0a7eff233965a0e08508ce3894414
.exe windows:4 windows x86 arch:x86

cd4fa2736e565c89dfc650dff1d624e5

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

InitCommonControlsEx

gdi32

InvertRgn
RemoveFontResourceA

user32

RegisterClassExA
RegisterClassA
LoadImageW
DragObject
SetLastErrorEx

kernel32

HeapDestroy
CloseHandle
OpenMutexA
CreateFileMappingW
InterlockedDecrement
GetStartupInfoA
GetVersion
RtlUnwind
GetModuleHandleA
GetCurrentThreadId
HeapCreate
TlsFree
InterlockedIncrement
VirtualQuery
CompareStringA
GetEnvironmentStringsW
GetEnvironmentStrings
GetStringTypeW
UnhandledExceptionFilter
SetLastError
LCMapStringA
GetFileType
TlsAlloc
GetCurrentThread
GetLocalTime
TerminateProcess
GetStartupInfoW
GetModuleFileNameA
GetCommandLineA
InterlockedExchange
GetModuleFileNameW
LCMapStringW
DeleteCriticalSection
WritePrivateProfileSectionW
MultiByteToWideChar
SetEnvironmentVariableA
VirtualAlloc
LeaveCriticalSection
HeapReAlloc
VirtualFree
HeapAlloc
GetCurrentProcess
HeapFree
GetLastError
CreateMutexA
ExitProcess
GetSystemTime
TlsSetValue
GetStdHandle
WriteFile
GetProcAddress
FreeEnvironmentStringsW
GetCPInfo
EnterCriticalSection
IsBadWritePtr
GetTimeZoneInformation
GetCurrentProcessId
QueryPerformanceCounter
CompareStringW
FlushFileBuffers
GetTickCount
FreeEnvironmentStringsA
ReadFile
GetCommandLineW
InitializeCriticalSection
SetFilePointer
WideCharToMultiByte
GetStringTypeA
SetStdHandle
GetSystemTimeAsFileTime
SetHandleCount
LoadLibraryA
TlsGetValue

Sections

.text
Size: 135KB - Virtual size: 135KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 173KB - Virtual size: 173KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

cd4fa2736e565c89dfc650dff1d624e5

Headers

File Characteristics

Imports

comctl32

gdi32

user32

kernel32

Sections

.text Size: 135KB - Virtual size: 135KB

.rdata Size: 3KB - Virtual size: 32KB

.data Size: 173KB - Virtual size: 173KB

.rsrc Size: 9KB - Virtual size: 8KB

.text
Size: 135KB - Virtual size: 135KB

.rdata
Size: 3KB - Virtual size: 32KB

.data
Size: 173KB - Virtual size: 173KB

.rsrc
Size: 9KB - Virtual size: 8KB