648bb3f5a0d74c1b2bb0634615a44f67

General

Target

648bb3f5a0d74c1b2bb0634615a44f67
Size

3.4MB
MD5

648bb3f5a0d74c1b2bb0634615a44f67
SHA1

0a758e7e16db04542af0b9dc7502e664ba9ad25b
SHA256

1917abd4f19ef07b6f7d50ff4257a074730130f4a171723913ff3825722fd584
SHA512

1167c9e29f129b0c1262f13c8522354646d785837c49b50ef89597f43fb7e7991e22652869a4b78bc1616aa396711b3a7000fb07cab16df1f04978a1ed741899
SSDEEP

98304:mXIT6SimphUiykNhMo7zOh5mos7Q9IV/OWQ9zG9:sSiCvykN6SOh5mdwSnQ9z

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
648bb3f5a0d74c1b2bb0634615a44f67

Files

648bb3f5a0d74c1b2bb0634615a44f67
.exe windows:4 windows x86 arch:x86

ede9ba583c224afc6e3d87a343c0cef9

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCurrentThreadId
GetCurrentProcess
GetCurrentProcessId
GetSystemTimeAsFileTime
SetUnhandledExceptionFilter
QueryPerformanceCounter
UnhandledExceptionFilter
FreeLibrary
MultiByteToWideChar
WideCharToMultiByte
HeapFree
LocalFree
EnterCriticalSection
WriteFile
GetProcessHeap
ExitProcess
GetModuleFileNameW
FindClose
ReadFile
SetEvent
GetACP
FormatMessageW
TlsGetValue
GetModuleHandleA
GetConsoleMode
FlushFileBuffers
TlsSetValue
CreateEventW
TlsAlloc
HeapSetInformation
WriteConsoleW
LoadLibraryW
LoadLibraryExW
SetFilePointer
GetFileAttributesW
CompareStringW
GetStringTypeW
GetModuleFileNameA
GetOEMCP
SetStdHandle
FreeEnvironmentStringsW
FindNextFileW
FindFirstFileW
DeleteFileW
VirtualAlloc
GetCommandLineA
DecodePointer
GetVersionExW
CreateFileA
VirtualFree
lstrlenW
GetLocaleInfoW
LoadResource
UnmapViewOfFile
ExpandEnvironmentStringsW

user32

TranslateMessage
DispatchMessageW
ShowWindow
DestroyWindow
DefWindowProcW
CreateWindowExW
SetWindowLongW
GetDlgItem
GetDC
PostMessageW
SetWindowPos
GetParent
SetWindowTextW
SetTimer
LoadIconW
SetFocus
SetForegroundWindow
GetSysColor
BeginPaint
ScreenToClient
RegisterClassW
EnableMenuItem
GetWindow
UpdateWindow
SystemParametersInfoW
GetKeyState
CharUpperW
ClientToScreen

Sections

.rdata
Size: 3.4MB - Virtual size: 3.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 612KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ede9ba583c224afc6e3d87a343c0cef9

Headers

File Characteristics

Imports

kernel32

user32

Sections

.rdata Size: 3.4MB - Virtual size: 3.4MB

.idata Size: 2KB - Virtual size: 2KB

.data Size: - Virtual size: 612KB

.text Size: 6KB - Virtual size: 6KB

.rdata
Size: 3.4MB - Virtual size: 3.4MB

.idata
Size: 2KB - Virtual size: 2KB

.data
Size: - Virtual size: 612KB

.text
Size: 6KB - Virtual size: 6KB