652d1d8d3da1d6d84d6e0a1dddef20ae

General

Target

652d1d8d3da1d6d84d6e0a1dddef20ae
Size

49KB
MD5

652d1d8d3da1d6d84d6e0a1dddef20ae
SHA1

22ab7cd2284426787fd6608554af065e4a3e2b7d
SHA256

772e7326b15398013b9f1d1ad7b13d666b04fb05def1ba379dad36113f26ca2d
SHA512

ef769ef8eb68788fafe2f875d27ff99b71e6f99dbbf720babd36eba7b2a05ae6c6e6071a6969f33e3560794df5445ff7ba28d5582c4c010815b9c4ad00cf40e4
SSDEEP

768:AMSmNzLAPqWFVMRUJNhW6pa4Kq2jRQuJKxNPzUiW55iaaaioYkoC:AHmhkPZX7rp5kp8l4755iFbVw

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
652d1d8d3da1d6d84d6e0a1dddef20ae

Files

652d1d8d3da1d6d84d6e0a1dddef20ae
.exe windows:4 windows x86 arch:x86

bd368ec82ce9ea17554dae2f4ac00f2a

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
CreateEventA
CreateFileA
CreateMutexA
DeleteCriticalSection
DisableThreadLibraryCalls
EnterCriticalSection
ExitProcess
GetCurrentProcess
GetCurrentProcessId
GetCurrentThreadId
GetLastError
GetModuleFileNameA
GetModuleHandleA
GetProcAddress
GetProcessHeap
GetStdHandle
GetSystemTimeAsFileTime
GetTickCount
GetVersionExA
HeapAlloc
HeapDestroy
HeapFree
InitializeCriticalSection
InterlockedCompareExchange
InterlockedExchange
InterlockedIncrement
LeaveCriticalSection
LoadLibraryA
LocalFree
QueryPerformanceCounter
ReadFile
Sleep
UnhandledExceptionFilter
lstrlenA

user32

CharUpperA
DispatchMessageA
GetWindowLongA
GetWindowRect
IsWindow
PostMessageA
SendDlgItemMessageA
SetDlgItemTextA
SetWindowLongA
SetWindowRgn
SystemParametersInfoA

Sections

.text
Size: 32KB - Virtual size: 32KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.bss
Size: 5KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 656B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

bd368ec82ce9ea17554dae2f4ac00f2a

Headers

File Characteristics

Imports

kernel32

user32

Sections

.text Size: 32KB - Virtual size: 32KB

.bss Size: 5KB - Virtual size: 13KB

.data Size: 7KB - Virtual size: 7KB

.idata Size: 1KB - Virtual size: 1KB

.rsrc Size: 1024B - Virtual size: 656B

.text
Size: 32KB - Virtual size: 32KB

.bss
Size: 5KB - Virtual size: 13KB

.data
Size: 7KB - Virtual size: 7KB

.idata
Size: 1KB - Virtual size: 1KB

.rsrc
Size: 1024B - Virtual size: 656B