9b944fd83236de73487f84f8b18e3c40

Sharing

Copy URL Twitter E-mail

General

Target

9b944fd83236de73487f84f8b18e3c40
Size

150KB
MD5

9b944fd83236de73487f84f8b18e3c40
SHA1

06a0d99e62d0d8b13792e8d6d810ef2fcc06a3dc
SHA256

f00b64716557a794240a592e376a2004b11d77b28c351339c9e8593b2bf0dfe5
SHA512

13e060451674a6833cab9c472c8c007b07dfc592f5ccee4b6549cfb2a924261cc1398c5e0f6619f4a95d75a452f8dd01f0a7680ec9d7e8a39e1c4b1ef1d592ef
SSDEEP

3072:Rcl53OprFYeO4JGY1EscmLgZ9wmCe0+5vC:Rcb3OjkVmLgTlCe0Mv

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
9b944fd83236de73487f84f8b18e3c40

Files

9b944fd83236de73487f84f8b18e3c40
.exe windows:4 windows x86 arch:x86

fb1255b43680903da990c0853ee8a46a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetACP
GetProcessHeap
GetCommState
GetCommTimeouts
CreateDirectoryA
GetCommProperties
GetConsoleCP
GlobalFree
GetOEMCP
GetCompressedFileSizeA
GetConsoleTitleA
GetConsoleOutputCP
GetCommMask
GetVersion
GetLastError
GetFileTime
GetConsoleTitleW
GetCompressedFileSizeA
GetOEMCP
GetConsoleCP
GetCommState
GetLastError
GetCommMask
GetConsoleMode
GetCommTimeouts
GetCompressedFileSizeW
CompareFileTime
GetFileTime
GetConsoleOutputCP
GetCommandLineA
GetCommandLineA
CreateDirectoryA
GetStdHandle
FreeConsole
GetACP
DeleteFileW
GetFileTime
FindNextFileW
GetCompressedFileSizeA
GetLastError
GetProcessHeap
GetCommModemStatus
GetVersion
GetOEMCP
DeleteFileW
GetCommandLineA
GetCommState
GlobalFree
GetLastError
GetConsoleTitleA
GetStdHandle
GetConsoleMode
DeleteFileA
GetConsoleCP
GetCommandLineA
DeleteFileA
GetLastError
GlobalFree
GetOEMCP
FindNextFileW
CreateDirectoryA
GetConsoleOutputCP
GetCommTimeouts
GetProcessHeap
GetCommProperties
GetCommandLineA
GetCommandLineA
FreeConsole
GetConsoleMode
GetOEMCP
GetStdHandle
GetCommMask
GetCommandLineA
DeleteFileW
FindNextFileW
GlobalFree
GetConsoleTitleW
GetCompressedFileSizeA
GetCompressedFileSizeW
GetVersion
GetLastError
GetConsoleCP
GetFileSize
GetCompressedFileSizeW
GetVersion
GetConsoleTitleW
GetLastError
GetFileSize
GetConsoleTitleA
CreateDirectoryA
GetACP
GetConsoleOutputCP
GetCommandLineA
GetStdHandle
GlobalFree
GetConsoleCP

user32

AppendMenuA
BlockInput
DrawIconEx
DrawIcon
IsWindow
CloseWindow
CreateIcon
CopyRect
CopyImage
CalcMenuBar
GetDC
DialogBoxParamW
AppendMenuW
LoadCursorA
GetFocus
IsMenu
DrawTextA
CopyIcon
GetMenu
GetMenu
IsMenu
DrawIcon
GetDC
GetWindowTextA
DialogBoxParamA
CopyImage
InsertMenuA
AppendMenuW
IsWindow
GetCursor
DialogBoxParamW
GetFocus
AlignRects
DrawIconEx
GetDlgItem
LoadCursorA
CopyIcon

Sections

.text
Size: 27KB - Virtual size: 26KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.init
Size: 110KB - Virtual size: 421KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

fb1255b43680903da990c0853ee8a46a

Headers

File Characteristics

Imports

kernel32

user32

Sections

.text Size: 27KB - Virtual size: 26KB

.rdata Size: 9KB - Virtual size: 8KB

.init Size: 110KB - Virtual size: 421KB

.idata Size: 3KB - Virtual size: 3KB

.text
Size: 27KB - Virtual size: 26KB

.rdata
Size: 9KB - Virtual size: 8KB

.init
Size: 110KB - Virtual size: 421KB

.idata
Size: 3KB - Virtual size: 3KB