4fae15509fd96199185c7c819cf22f1f

General

Target

4fae15509fd96199185c7c819cf22f1f
Size

3.4MB
MD5

4fae15509fd96199185c7c819cf22f1f
SHA1

4c4963179cd078c6c1abb48fd802e3ea2d4e99b6
SHA256

5da2159ab7e69c11e62a66cc653e92b7c732b353ddb5ad17d8fea62b9700e131
SHA512

baadfa15a6e55781e5ab49242fb4deac6781d30d9995ed8332ef2b090696cd5e49a586385790cb03bc4cddc23a32a6657712e9074e9c7ca66451de21b6cb7f7e
SSDEEP

98304:6j7FgHNnsLQntm6phrkMWCf5LFT+IxHgwfDWKW8:6i1pnt7Hf5F5hDWK

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4fae15509fd96199185c7c819cf22f1f

Files

4fae15509fd96199185c7c819cf22f1f
.exe windows:4 windows x86 arch:x86

c3b611478a14599999d6a41a12023a3c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCurrentThreadId
GetCurrentProcess
GetCurrentProcessId
GetSystemTimeAsFileTime
SetUnhandledExceptionFilter
GetModuleHandleW
GetProcAddress
CloseHandle
Sleep
GetTickCount
MultiByteToWideChar
HeapFree
HeapAlloc
DeleteCriticalSection
EnterCriticalSection
GetProcessHeap
ExitProcess
GetStdHandle
GetStartupInfoW
IsDebuggerPresent
FindClose
ReadFile
RaiseException
SetEvent
GetFileType
TlsGetValue
GetModuleHandleA
InitializeCriticalSection
GetConsoleMode
FlushFileBuffers
TlsSetValue
CreateEventW
TlsAlloc
LoadLibraryW
LoadLibraryExW
GetCPInfo
TlsFree
GetFileAttributesW
CompareStringW
GetStringTypeW
RtlUnwind
GetEnvironmentStringsW
SetStdHandle
FindFirstFileW
DeleteFileW
GetCommandLineA
DecodePointer
ResetEvent
CreateFileA
GetFileSize
VirtualFree
lstrlenW
LoadLibraryA
GetLocaleInfoW
UnmapViewOfFile
GetExitCodeProcess
CreateProcessW

user32

ShowWindow
DestroyWindow
DefWindowProcW
SetWindowLongW
GetMessageW
GetWindowRect
PostMessageW
GetParent
EndDialog
SetTimer
SetFocus
GetSysColor
PeekMessageW
EndPaint
ScreenToClient
EnableMenuItem
GetWindow
GetWindowTextW
UpdateWindow
CharUpperW

Sections

.data
Size: - Virtual size: 612KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3.4MB - Virtual size: 3.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c3b611478a14599999d6a41a12023a3c

Headers

File Characteristics

Imports

kernel32

user32

Sections

.data Size: - Virtual size: 612KB

.text Size: 6KB - Virtual size: 6KB

.rdata Size: 3.4MB - Virtual size: 3.4MB

.idata Size: 2KB - Virtual size: 1KB

.data
Size: - Virtual size: 612KB

.text
Size: 6KB - Virtual size: 6KB

.rdata
Size: 3.4MB - Virtual size: 3.4MB

.idata
Size: 2KB - Virtual size: 1KB