4d4d729339997c5ed89bffb1ca912897

Sharing

Copy URL

Twitter E-mail

General

Target

4d4d729339997c5ed89bffb1ca912897
Size

229KB
MD5

4d4d729339997c5ed89bffb1ca912897
SHA1

eab81216196495c8383cd6f31ba54b589da4b125
SHA256

24ee44c531060c1e40164e270180e2d7d1be4601d653b25e27798f91315a4069
SHA512

29ed257a296d726b9b609d50848b0edb27f7ff717f4c824c961ef3d4801429e235126e94ff13886ac12a34162b8221b3ec401b48b42cc70c440dd2a38189f517
SSDEEP

6144:STPHJBlDMYCvIhbltfyzG8tOIz5XMt0NFqZVD+7jdF8p9h6c:STPHxMYCvIPR0G8tOuXMt0NFAD+7jgrX

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4d4d729339997c5ed89bffb1ca912897

Files

4d4d729339997c5ed89bffb1ca912897
.exe windows:4 windows x86 arch:x86

6a65629e6ee5550e197dce1194a97b88

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

CreateFileMappingA
CreateMailslotA
CreateNamedPipeA
CreateSemaphoreA
EnumCalendarInfoW
ExitProcess
GetConsoleMode
GetEnvironmentStringsA
GetNamedPipeHandleStateW
GetProcessWorkingSetSize
GetShortPathNameA
GetStringTypeA
GetSystemDefaultLCID
LocalLock
OpenWaitableTimerW
Process32First
QueryDosDeviceA
ReadConsoleInputA
ReadDirectoryChangesW
SetCommConfig
SetLastError
SwitchToThread
TlsGetValue
WriteConsoleOutputAttribute
WriteProfileStringW
WriteTapemark

advapi32

AreAnyAccessesGranted
CancelOverlappedAccess
CopySid
CryptContextAddRef
CryptCreateHash
CryptDuplicateHash
CryptSetHashParam
CryptSetProviderW
CryptVerifySignatureA
DuplicateToken
EnumDependentServicesA
GetCurrentHwProfileW
GetLengthSid
GetOverlappedAccessResults
GetSecurityDescriptorLength
GetServiceKeyNameW
GetTrusteeNameW
ImpersonateLoggedOnUser
IsValidSecurityDescriptor
IsValidSid
LogonUserA
ObjectDeleteAuditAlarmA
RegOpenKeyA
RegOpenKeyExW
RegUnLoadKeyW
SetEntriesInAuditListA

gdi32

BitBlt
ChoosePixelFormat
ColorMatchToTarget
CreateFontIndirectW
CreatePen
CreatePenIndirect
CreateRectRgn
CreateRectRgnIndirect
EnumMetaFile
EnumObjects
GdiPlayDCScript
GetAspectRatioFilterEx
GetBitmapBits
GetEnhMetaFileDescriptionW
GetGraphicsMode
GetSystemPaletteEntries
GetTextCharsetInfo
GetWinMetaFileBits
PaintRgn
PatBlt
PolyBezier
PtInRegion
RemoveFontResourceW
SelectClipPath
SetBoundsRect
SetColorSpace
SetICMMode
SetMagicColors
TextOutA
TextOutW

Sections

.text
Size: 512B - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 226KB - Virtual size: 232KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 212KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6a65629e6ee5550e197dce1194a97b88

Headers

File Characteristics

Imports

kernel32

advapi32

gdi32

Sections

.text Size: 512B - Virtual size: 20KB

.data Size: 226KB - Virtual size: 232KB

.idata Size: - Virtual size: 8KB

.rsrc Size: 1024B - Virtual size: 212KB

.text
Size: 512B - Virtual size: 20KB

.data
Size: 226KB - Virtual size: 232KB

.idata
Size: - Virtual size: 8KB

.rsrc
Size: 1024B - Virtual size: 212KB