7841911ea47607b89bbe7e560b8db0f4

General

Target

7841911ea47607b89bbe7e560b8db0f4
Size

3.4MB
MD5

7841911ea47607b89bbe7e560b8db0f4
SHA1

9389913c6861b9fa5bc4b4621278a81eae4e8fb4
SHA256

36e926e4b29dd1f763b9e99518546447ca3afbaaae67861ac27933e5d607be3b
SHA512

0468dd4bb51ee8842e62fde35d513ea02ddb64fb2a87642ce87fb02af3205d21e758d13b3816fa855eebab9fb4d3ea5e9999c74c87dc4a2b500727764999c5a3
SSDEEP

98304:1DP4rzp9/Bn9EbdY94qRaztW3kOLdCNnXZ4IWhxrnrYNy3R2D:qp1AZY94xpOkXKXhxrs6R4

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7841911ea47607b89bbe7e560b8db0f4

Files

7841911ea47607b89bbe7e560b8db0f4
.exe windows:4 windows x86 arch:x86

196126d20ef989108e40a381a8ee0cf5

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
GetModuleHandleW
QueryPerformanceCounter
GetProcAddress
TerminateProcess
UnhandledExceptionFilter
GetTickCount
WideCharToMultiByte
HeapAlloc
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
WriteFile
WaitForSingleObject
GetProcessHeap
CreateFileW
GetModuleFileNameW
GetStartupInfoW
ReadFile
RaiseException
GetACP
GetFileType
TlsGetValue
GetModuleHandleA
CreateEventW
HeapSetInformation
WriteConsoleW
LoadLibraryExW
CreateThread
GetStringTypeW
RtlUnwind
LCMapStringW
InitializeCriticalSectionAndSpinCount
GetEnvironmentStringsW
SetStdHandle
FreeEnvironmentStringsW
IsProcessorFeaturePresent
IsValidCodePage
VirtualAlloc
GetVersionExW
ReleaseMutex
CreateFileA
EncodePointer
lstrlenW
LoadLibraryA
ExpandEnvironmentStringsW
CreateProcessW

user32

ShowWindow
ReleaseDC
MessageBoxW
CreateWindowExW
GetDlgItem
GetSystemMetrics
PostMessageW
GetClientRect
LoadCursorW
EndDialog
SetForegroundWindow
BeginPaint
ScreenToClient
SetCursor
KillTimer
RegisterClassW
GetWindowTextW
UpdateWindow
MessageBoxA

Sections

.rdata
Size: 3.4MB - Virtual size: 3.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 612KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

196126d20ef989108e40a381a8ee0cf5

Headers

File Characteristics

Imports

kernel32

user32

Sections

.rdata Size: 3.4MB - Virtual size: 3.4MB

.data Size: - Virtual size: 612KB

.text Size: 6KB - Virtual size: 6KB

.idata Size: 2KB - Virtual size: 1KB

.rdata
Size: 3.4MB - Virtual size: 3.4MB

.data
Size: - Virtual size: 612KB

.text
Size: 6KB - Virtual size: 6KB

.idata
Size: 2KB - Virtual size: 1KB