4ff064c3ff7c0b7f1f0950428cba49b5

Sharing

Copy URL Twitter E-mail

General

Target

4ff064c3ff7c0b7f1f0950428cba49b5
Size

113KB
MD5

4ff064c3ff7c0b7f1f0950428cba49b5
SHA1

8f217adb81b001575ba73dfa2a3476d0b5318dbd
SHA256

8d3cd3b81f6eb80fb420fc44685659c05e535ee7818d1fc733533e208edafd58
SHA512

e664721dc79bad9f416a282488aae93b07bcfe95794aaf50b7a8a15696f572a4f17acd11acabe697fcd7ce06ec03b10209165d403224b8390dcb9ad605da9de1
SSDEEP

768:0Cd8xLEiPMydOkzttWuGALleMLJCg1k5ELl+eMYxIQY4uj5Gh1h/SRlFx:0CdqMq7GALleMeKfqQ1uS1haRZ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4ff064c3ff7c0b7f1f0950428cba49b5

Files

4ff064c3ff7c0b7f1f0950428cba49b5
.exe windows:1 windows x86 arch:x86

37d537e0f4b1aa1366fbedc0ecdaffd1

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

TerminateProcess
SetEvent
HeapDestroy
SetEvent
Sleep
UnhandledExceptionFilter
InterlockedDecrement
GetACP
CloseHandle
UnhandledExceptionFilter
GetSystemTimeAsFileTime
WideCharToMultiByte
lstrcpyW
GetCommandLineW
InterlockedDecrement
CreateFileW
GetCurrentProcess
LocalAlloc
TerminateProcess
ExitProcess
InterlockedDecrement
VirtualFree
SetFilePointer
VirtualAlloc
LoadLibraryW

Sections

.nufm
Size: 102KB - Virtual size: 120KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.tqbl
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.vwuo
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.sfpb
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.kajg
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.vmbv
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.irtc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ases
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.ubcs
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

37d537e0f4b1aa1366fbedc0ecdaffd1

Headers

File Characteristics

Imports

kernel32

Sections

.nufm Size: 102KB - Virtual size: 120KB

.tqbl Size: 1024B - Virtual size: 4KB

.vwuo Size: 1KB - Virtual size: 4KB

.sfpb Size: 1024B - Virtual size: 4KB

.kajg Size: 512B - Virtual size: 4KB

.vmbv Size: 512B - Virtual size: 4KB

.irtc Size: 512B - Virtual size: 4KB

.ases Size: 3KB - Virtual size: 2KB

.rsrc Size: 512B - Virtual size: 12B

.ubcs Size: 1024B - Virtual size: 4KB

.nufm
Size: 102KB - Virtual size: 120KB

.tqbl
Size: 1024B - Virtual size: 4KB

.vwuo
Size: 1KB - Virtual size: 4KB

.sfpb
Size: 1024B - Virtual size: 4KB

.kajg
Size: 512B - Virtual size: 4KB

.vmbv
Size: 512B - Virtual size: 4KB

.irtc
Size: 512B - Virtual size: 4KB

.ases
Size: 3KB - Virtual size: 2KB

.rsrc
Size: 512B - Virtual size: 12B

.ubcs
Size: 1024B - Virtual size: 4KB