992f74cb1a5339b62beba6b7c5feaf9d

General

Target

992f74cb1a5339b62beba6b7c5feaf9d
Size

3.4MB
MD5

992f74cb1a5339b62beba6b7c5feaf9d
SHA1

369715d5f42a2aaff1979018e89c978b94f4302a
SHA256

d57c01732c19a6ba427f72d7359287e7643b033fcf9f68b2024cc141530084c5
SHA512

aed708108e91108b74b2a0dfb37c5b220214b8164092660353e22312f4042fb5384e25c175a55c642dec2b0436b5690d0731fe7059dbf8f9612b677cc026f969
SSDEEP

98304:Bf1LubgegQqIN621RIMsquiGT5qV18ZnUtj42sHm:Bfhubw0NJRI0uiGTMoUO9

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
992f74cb1a5339b62beba6b7c5feaf9d

Files

992f74cb1a5339b62beba6b7c5feaf9d
.exe windows:4 windows x86 arch:x86

4a9acaae36b0444ac7dfb825e064e2b1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLastError
GetSystemTimeAsFileTime
QueryPerformanceCounter
CloseHandle
UnhandledExceptionFilter
Sleep
GetTickCount
FreeLibrary
SetLastError
HeapFree
DeleteCriticalSection
EnterCriticalSection
WriteFile
WaitForSingleObject
GetProcessHeap
ExitProcess
GetModuleFileNameW
GetStartupInfoW
IsDebuggerPresent
ReadFile
RaiseException
FormatMessageW
GetFileType
TlsGetValue
InitializeCriticalSection
GetConsoleMode
HeapSetInformation
HeapSize
TlsFree
SetFilePointer
CompareStringW
GetStringTypeW
LCMapStringW
IsProcessorFeaturePresent
FindNextFileW
IsValidCodePage
FindFirstFileW
DeleteFileW
GetConsoleCP
SetEndOfFile
ResetEvent
GetVersionExW
CreateFileA
OutputDebugStringW
GetFileSize
EncodePointer
VirtualFree
lstrlenW
GetLocaleInfoW
GetFullPathNameW
LoadResource
ExpandEnvironmentStringsW
CreateProcessW

user32

TranslateMessage
LoadStringW
ReleaseDC
MessageBoxW
CreateWindowExW
GetDlgItem
GetDC
GetWindowRect
GetClientRect
IsWindow
GetParent
SetWindowTextW
SetFocus
GetSysColor
EndPaint
BeginPaint
ScreenToClient
SetCursor
RegisterClassW
GetWindowTextW
CharUpperW

Sections

.rdata
Size: 3.4MB - Virtual size: 3.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.text
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 612KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

4a9acaae36b0444ac7dfb825e064e2b1

Headers

File Characteristics

Imports

kernel32

user32

Sections

.rdata Size: 3.4MB - Virtual size: 3.4MB

.idata Size: 2KB - Virtual size: 1KB

.text Size: 6KB - Virtual size: 6KB

.data Size: - Virtual size: 612KB

.rdata
Size: 3.4MB - Virtual size: 3.4MB

.idata
Size: 2KB - Virtual size: 1KB

.text
Size: 6KB - Virtual size: 6KB

.data
Size: - Virtual size: 612KB