71444d50939d7ecfe5d059f174e8d1c5

General

Target

71444d50939d7ecfe5d059f174e8d1c5
Size

3.4MB
MD5

71444d50939d7ecfe5d059f174e8d1c5
SHA1

0e08deb3847b6abe1d9db2e0848fa5b8f95b1e4c
SHA256

8e3066f6740c8d66adaca56a4606e836a1e19b5eaece7c6fe7b444e02bb88359
SHA512

e8626edb15dd2ca5a8cb0762fe51faf3cf140e3d5580c9f6c124ec8cf535bb819dae38e5bdca394e3325c2c45cd86df634823a42eecf48b0c054bf4e350fbff6
SSDEEP

98304:gQqUkLQuPOtQcqWjS33yPBv6EnDHlG8To:gRsXhS33yPBzbTTo

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
71444d50939d7ecfe5d059f174e8d1c5

Files

71444d50939d7ecfe5d059f174e8d1c5
.exe windows:4 windows x86 arch:x86

2034a9c95a8b6e2def13834e5d895c50

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLastError
GetCurrentProcessId
GetSystemTimeAsFileTime
SetUnhandledExceptionFilter
GetModuleHandleW
QueryPerformanceCounter
Sleep
GetTickCount
WideCharToMultiByte
SetLastError
HeapFree
HeapAlloc
LocalFree
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
WriteFile
WaitForSingleObject
GetProcessHeap
GetStdHandle
GetStartupInfoW
IsDebuggerPresent
ReadFile
RaiseException
SetEvent
GetFileType
GetModuleHandleA
HeapReAlloc
FlushFileBuffers
HeapSetInformation
LoadLibraryW
SetFilePointer
GetStringTypeW
GetModuleFileNameA
GetOEMCP
FreeEnvironmentStringsW
IsProcessorFeaturePresent
FindNextFileW
FindFirstFileW
VirtualAlloc
GetConsoleCP
ReleaseMutex
GetFileSize
VirtualFree
lstrlenW
GetModuleHandleExW
GetLocaleInfoW
CreateDirectoryW
GetFullPathNameW
LoadResource
UnmapViewOfFile

user32

DispatchMessageW
DestroyWindow
ReleaseDC
GetWindowLongW
GetMessageW
GetDlgItem
GetSystemMetrics
GetDC
PostMessageW
GetClientRect
EnableWindow
LoadCursorW
GetParent
SetTimer
SetFocus
SetForegroundWindow
PeekMessageW
EndPaint
BeginPaint
ScreenToClient
KillTimer
RegisterClassW
EnableMenuItem
GetWindow
UpdateWindow

Sections

.text
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3.4MB - Virtual size: 3.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 612KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

2034a9c95a8b6e2def13834e5d895c50

Headers

File Characteristics

Imports

kernel32

user32

Sections

.text Size: 6KB - Virtual size: 6KB

.rdata Size: 3.4MB - Virtual size: 3.4MB

.idata Size: 2KB - Virtual size: 1KB

.data Size: - Virtual size: 612KB

.text
Size: 6KB - Virtual size: 6KB

.rdata
Size: 3.4MB - Virtual size: 3.4MB

.idata
Size: 2KB - Virtual size: 1KB

.data
Size: - Virtual size: 612KB