2e3b57de3f35a3ff8b3e7434e0c9977b4b937c60e1e3701aea56c7948bd6f00a

General

Target

2e3b57de3f35a3ff8b3e7434e0c9977b4b937c60e1e3701aea56c7948bd6f00a
Size

92KB
MD5

82f36f46be9d53a64c26a61458c98189
SHA1

a1dac3ec027850b8de4255cc4a58434c2014e11e
SHA256

2e3b57de3f35a3ff8b3e7434e0c9977b4b937c60e1e3701aea56c7948bd6f00a
SHA512

e19fdd5574bd1508360c2426d5fe2e58d50b8b0815d6e8374217dc45efc5ccdda7ee020117541582955df6e73dde229725a1f50e12f7814bafaab5a720f4d8bc
SSDEEP

1536:H0dG+Wh6rRQ5dn5dzdRdWkmE8edkTtFycf4hI+BKMrurUToj05ewZ4ApaEqxdlyo:H0dC6rs5dzdRdWkmE8edk9f4hI+BKMrU

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2e3b57de3f35a3ff8b3e7434e0c9977b4b937c60e1e3701aea56c7948bd6f00a

Files

2e3b57de3f35a3ff8b3e7434e0c9977b4b937c60e1e3701aea56c7948bd6f00a
.exe windows:6 windows x86 arch:x86

c66a760adf47143f308cb4b24ba8cf8c

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

ole32

CoCreateInstance
CoInitialize
CoUninitialize

oleaut32

SysAllocString
SysFreeString
VariantClear
VariantInit

user32

LoadStringW
MessageBoxW

comctl32

InitCommonControls

ucrtbase

__acrt_iob_func
__p___argc
__p___wargv
__stdio_common_vsprintf
_assert
_configure_wide_argv
_get_initial_wide_environment
_initialize_wide_environment
_set_app_type
_strdup
_wcsnicmp
exit
free
fwrite
getenv
memcpy
memmove
memset
strchr
strcmp
strcpy
strcspn
strlen
wcsrchr

kernel32

CloseHandle
CreateFileW
ExitProcess
GetCommandLineW
GetModuleHandleW
GetProcAddress
GetStartupInfoW
GetTickCount
HeapAlloc
HeapFree
HeapReAlloc
IsBadStringPtrW
WideCharToMultiByte
WriteFile

ntdll

_chkstk
_vsnprintf

Sections

.text
Size: 12KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 16KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 1020B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c66a760adf47143f308cb4b24ba8cf8c

Headers

DLL Characteristics

File Characteristics

Imports

ole32

oleaut32

user32

comctl32

ucrtbase

kernel32

ntdll

Sections

.text Size: 12KB - Virtual size: 8KB

.rdata Size: 16KB - Virtual size: 13KB

.data Size: 4KB - Virtual size: 1KB

.rsrc Size: 12KB - Virtual size: 8KB

.reloc Size: 4KB - Virtual size: 1020B

.text
Size: 12KB - Virtual size: 8KB

.rdata
Size: 16KB - Virtual size: 13KB

.data
Size: 4KB - Virtual size: 1KB

.rsrc
Size: 12KB - Virtual size: 8KB

.reloc
Size: 4KB - Virtual size: 1020B