50f23541d4dbf1abe9a4f08aa44409fb

General

Target

50f23541d4dbf1abe9a4f08aa44409fb
Size

3.4MB
MD5

50f23541d4dbf1abe9a4f08aa44409fb
SHA1

73fc4cf521af56fc63c6fea9f02d5fae2a930bc8
SHA256

cd00a7e67d47f05e6bc2fe83217d1672685e75bc06d639698a01710899205919
SHA512

c877108c344aefe695938b787f87e1d464a76e96b4358145dfb5bc522a7024dd56ebc7d9a9a5a1f8519f1a3753fd6b4492fcfbe40dbf7e4a3dbfe09a3e2f86ea
SSDEEP

49152:vRUIaXCwmcg/7tSyWD5fE4luqaNaIXPPEf2OgiBVUrRZcjIWyt0xo:JUHXCwmcg/7tSFD5fE4luqacIU3vVSw

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
50f23541d4dbf1abe9a4f08aa44409fb

Files

50f23541d4dbf1abe9a4f08aa44409fb
.exe windows:4 windows x86 arch:x86

31116ff326712e2f7944e7b2cf23c87b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCurrentThreadId
GetCurrentProcess
SetUnhandledExceptionFilter
GetModuleHandleW
GetProcAddress
Sleep
GetTickCount
FreeLibrary
HeapFree
HeapAlloc
LocalFree
DeleteCriticalSection
EnterCriticalSection
WaitForSingleObject
GetProcessHeap
CreateFileW
GetStartupInfoW
GetCommandLineW
HeapReAlloc
TlsSetValue
CreateEventW
HeapSetInformation
WriteConsoleW
CreateThread
GetCPInfo
SetFilePointer
GetFileAttributesW
CompareStringW
GetModuleFileNameA
InitializeCriticalSectionAndSpinCount
GetOEMCP
SetStdHandle
IsProcessorFeaturePresent
GetConsoleCP
GetCommandLineA
DecodePointer
GetVersionExW
CreateFileA
GetFileSize
VirtualFree
LoadLibraryA
GetModuleHandleExW
GetLocaleInfoW
CreateDirectoryW
CreateProcessW

user32

TranslateMessage
DefWindowProcW
GetWindowLongW
GetMessageW
GetDlgItem
GetSystemMetrics
GetDC
SendMessageW
GetClientRect
EnableWindow
LoadCursorW
SetFocus
SetForegroundWindow
GetSysColor
PeekMessageW
ScreenToClient
InvalidateRect
EnableMenuItem
UpdateWindow
SystemParametersInfoW
GetKeyState
MessageBoxA
CharUpperW
ClientToScreen

Sections

.idata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 3.4MB - Virtual size: 3.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.text
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 612KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

31116ff326712e2f7944e7b2cf23c87b

Headers

File Characteristics

Imports

kernel32

user32

Sections

.idata Size: 2KB - Virtual size: 1KB

.rdata Size: 3.4MB - Virtual size: 3.4MB

.text Size: 6KB - Virtual size: 6KB

.data Size: - Virtual size: 612KB

.idata
Size: 2KB - Virtual size: 1KB

.rdata
Size: 3.4MB - Virtual size: 3.4MB

.text
Size: 6KB - Virtual size: 6KB

.data
Size: - Virtual size: 612KB