59ee303584514aa309735860746b30f5

General

Target

59ee303584514aa309735860746b30f5
Size

272KB
MD5

59ee303584514aa309735860746b30f5
SHA1

383d386798d40dd90ca75cda536cdf3396b42259
SHA256

aca4ce110862cdd755a533c1dbb0f5a94c99c34ed169a76cd76d16d3abac92ba
SHA512

83dabcaf9f9bd3fc89b1e2622a5240f172c7a1d5970611f717e50d2aa7df74a2f6ff283e89720120082fa2130e33f66bf4161f1d906cc8cbdc5948500acec1d6
SSDEEP

6144:SWpq4/uTcvUGcnkVzSK21an/rOxuXwHgo4B2+Tu:S6z/ZvPc22WrFAHo2+q

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
59ee303584514aa309735860746b30f5

Files

59ee303584514aa309735860746b30f5
.exe windows:4 windows x86 arch:x86

506184b53bcfa2711742b2f0b5b95f1f

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

TlsGetValue
HeapFree
SetUnhandledExceptionFilter
GlobalMemoryStatus
GetSystemTimeAsFileTime
GlobalAddAtomW
GetCommandLineA
TlsSetValue
GetVersion
TerminateProcess
TlsFree
GetModuleHandleW
GetCurrentProcessId
RaiseException
GetLocalTime
CloseHandle
EnumResourceNamesA
GetModuleFileNameA
DeviceIoControl
GetStartupInfoA
GetStdHandle
GetProcessHeap
SetLastError
HeapAlloc
GetVersionExA
GetFileType
GetCurrentThread
GetTickCount
OutputDebugStringW
GetDiskFreeSpaceA
GetCurrentProcess
QueryPerformanceCounter
RtlUnwind
TlsAlloc
GetComputerNameA
SetHandleCount
InterlockedExchange

gdi32

BeginPath
SetBrushOrgEx
GetWorldTransform
GetStockObject
CloseFigure
SetROP2
GetGraphicsMode
SelectClipPath
CreatePatternBrush
Rectangle
EndPath
MoveToEx
PolylineTo
GetClipBox
PolyBezierTo
LineTo
SetGraphicsMode
IntersectClipRect
FillPath
PolyDraw

setupapi

CM_Get_Depth
CMP_WaitNoPendingInstallEvents
SetupDiGetDeviceRegistryPropertyW
CM_Get_DevNode_Status

Sections

.text
Size: 137KB - Virtual size: 272KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 131KB - Virtual size: 131KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

506184b53bcfa2711742b2f0b5b95f1f

Headers

File Characteristics

Imports

kernel32

gdi32

setupapi

Sections

.text Size: 137KB - Virtual size: 272KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 131KB - Virtual size: 131KB

.rsrc Size: 1024B - Virtual size: 4KB

.text
Size: 137KB - Virtual size: 272KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 131KB - Virtual size: 131KB

.rsrc
Size: 1024B - Virtual size: 4KB