900662bf8058952adc91f960e0fd4713

General

Target

900662bf8058952adc91f960e0fd4713
Size

10KB
MD5

900662bf8058952adc91f960e0fd4713
SHA1

cdcef5f5a284581b5ea9eb62342419d1e9a81700
SHA256

8f2addee6d63a3ab74a409d1fdbde958ca2ee8544c96164607c6ccb2a4a59eea
SHA512

d50f6a7326e8566e0660a64f9b19318b0e7188975edbe043a08421d71d308ec3788c9f1fe6691e2353db3d2703a1b498f3fdc939386e6b83ba380c44a758b4ef
SSDEEP

192:hURY9r9c7pZ1c//1BTAVPsDNwYbQD8VBc+sMIrJI/4KjKHKS:hRr9wZc/8PsDNwYbQD83c+s9r44KjKqS

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
900662bf8058952adc91f960e0fd4713

Files

900662bf8058952adc91f960e0fd4713
.exe windows:4 windows x86 arch:x86

3b0fe2129b3b31ee27ed2c91a389045b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

wsprintfA

kernel32

ExitProcess
GetFileSize
GetLastError
GetLocaleInfoA
GetModuleFileNameA
GetModuleHandleA
GetProcAddress
GetSystemDefaultLCID
GetSystemDefaultLangID
GetSystemDirectoryA
GetSystemInfo
GetSystemTime
GetSystemTimeAsFileTime
GetVersionExA
GetVolumeInformationA
LoadLibraryA
DeleteFileA
LocalFree
OpenProcess
Process32First
Process32Next
ReadFile
ReleaseMutex
RtlZeroMemory
Sleep
TerminateProcess
CreateToolhelp32Snapshot
WaitForSingleObject
WinExec
WriteFile
lstrcatA
lstrcmpiA
lstrcpyA
lstrcpynA
lstrlenA
CreateSemaphoreA
CreateProcessA
CreateMutexA
CreateFileA
CopyFileA
CloseHandle
LocalAlloc
VerLanguageNameA

advapi32

RegSetValueExA
GetUserNameA
RegQueryValueExA
RegDeleteValueA
RegDeleteKeyA
RegCreateKeyExA
RegCloseKey

urlmon

URLDownloadToFileA

ws2_32

closesocket
htons
sendto
socket
WSAStartup

dnsapi

DnsQuery_A

shlwapi

StrToIntA
StrStrA

wininet

HttpQueryInfoA
InternetReadFile
InternetOpenUrlA
InternetOpenA
InternetCloseHandle

Sections

.text
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

3b0fe2129b3b31ee27ed2c91a389045b

Headers

File Characteristics

Imports

user32

kernel32

advapi32

urlmon

ws2_32

dnsapi

shlwapi

wininet

Sections

.text Size: 5KB - Virtual size: 4KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 2KB - Virtual size: 1KB

.text
Size: 5KB - Virtual size: 4KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 2KB - Virtual size: 1KB