4cf941ff8a1d0337f2e301ac14bc4661

General

Target

4cf941ff8a1d0337f2e301ac14bc4661
Size

3.4MB
MD5

4cf941ff8a1d0337f2e301ac14bc4661
SHA1

b79f26e99dfb05eb9224f362c83d1da3b8d69780
SHA256

8c5c2738142df83fc41a4c1eee019a1ac8cbae360dec29a464cdd636d5690475
SHA512

fe4eda9ccab7a2b22647f623b3ca2c1e855c3737f79625b780ae2dceeba646c7b33934a536e5761c9332187714e64629099502899ee233c500db110047defd2e
SSDEEP

98304:Udo0HLRD2SZL5F326H9R+xabeFziGblFG0knmHdhatXK0r:uo0HtD2SHF39dqgeFziGbDrgmHdh2K0

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4cf941ff8a1d0337f2e301ac14bc4661

Files

4cf941ff8a1d0337f2e301ac14bc4661
.exe windows:4 windows x86 arch:x86

8c9f4af700d2ca7e6bf508250959b3b5

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLastError
GetCurrentThreadId
GetCurrentProcess
GetCurrentProcessId
GetSystemTimeAsFileTime
QueryPerformanceCounter
GetProcAddress
CloseHandle
UnhandledExceptionFilter
GetTickCount
MultiByteToWideChar
HeapAlloc
LocalFree
DeleteCriticalSection
LeaveCriticalSection
WriteFile
WaitForSingleObject
GetProcessHeap
CreateFileW
GetModuleFileNameW
GetStartupInfoW
IsDebuggerPresent
GetACP
FormatMessageW
GetFileType
TlsSetValue
TlsAlloc
WriteConsoleW
LoadLibraryExW
CreateThread
GetCPInfo
SetFilePointer
GetFileAttributesW
GetStringTypeW
InitializeCriticalSectionAndSpinCount
FreeEnvironmentStringsW
IsValidCodePage
GetConsoleCP
LocalAlloc
DecodePointer
SetEndOfFile
ResetEvent
GetVersionExW
ReleaseMutex
OutputDebugStringW
GetFileSize
EncodePointer
lstrlenW
GetModuleHandleExW
GetLocaleInfoW
CreateDirectoryW
GetFullPathNameW
LoadResource
UnmapViewOfFile
GetExitCodeProcess
CreateProcessW

user32

TranslateMessage
LoadStringW
DestroyWindow
DefWindowProcW
MessageBoxW
PostQuitMessage
CreateWindowExW
SetWindowLongW
GetWindowLongW
GetDlgItem
PostMessageW
IsWindow
EndDialog
SetTimer
LoadIconW
PeekMessageW
EndPaint
BeginPaint
SetCursor
KillTimer
InvalidateRect
RegisterClassW
SystemParametersInfoW
GetKeyState
MessageBoxA

Sections

.rdata
Size: 3.4MB - Virtual size: 3.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.text
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 612KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8c9f4af700d2ca7e6bf508250959b3b5

Headers

File Characteristics

Imports

kernel32

user32

Sections

.rdata Size: 3.4MB - Virtual size: 3.4MB

.text Size: 6KB - Virtual size: 6KB

.data Size: - Virtual size: 612KB

.idata Size: 2KB - Virtual size: 2KB

.rdata
Size: 3.4MB - Virtual size: 3.4MB

.text
Size: 6KB - Virtual size: 6KB

.data
Size: - Virtual size: 612KB

.idata
Size: 2KB - Virtual size: 2KB