9bbb3c1feed2a39a2195bf0c2390f81c

General

Target

9bbb3c1feed2a39a2195bf0c2390f81c
Size

224KB
MD5

9bbb3c1feed2a39a2195bf0c2390f81c
SHA1

da53df42930c521b9f2290f69cd2039fc5a00017
SHA256

49c8f3618b2330ab795cd6b1e406f69e5a0f4bc75eb52053f02163c449963572
SHA512

3c341e19abb64158a4a9cc9c40cbcbdf9593ceaf6d10cc01e61289eec5dc9113f05f92aa19f0d00a99d1a59908bfbf6655467530e46625a471a838ccd4acf544
SSDEEP

6144:iiZlSXlgLjlkWZ4WQnbh9LnPTD8XyWl6dMUaBk65tpm:rlagVkWJu5nPTQXgdWBX5n

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
9bbb3c1feed2a39a2195bf0c2390f81c

Files

9bbb3c1feed2a39a2195bf0c2390f81c
.exe windows:4 windows x86 arch:x86

8a3fd42f3780dd59ea0f85f6b4fe6f82

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcessAffinityMask
GetVolumePathNameA
GetCurrentThread
LoadLibraryA
GetCurrentProcess
ExitVDM
GetConsoleTitleA
ReadConsoleOutputA
DuplicateConsoleHandle
TransmitCommChar
QueueUserAPC
GetDriveTypeA
VirtualProtect
SetConsoleInputExeNameA
GlobalDeleteAtom
GetProfileStringA
LCMapStringA
GetDriveTypeA
GetProfileIntA
RemoveDirectoryA
FindVolumeMountPointClose
GetCommProperties
HeapSize
ReadConsoleA
VirtualAlloc
SetCommState
HeapSize
GetConsoleCP
WriteConsoleInputA
SetFileAttributesA
GetConsoleTitleA
FindFirstChangeNotificationA
SetUnhandledExceptionFilter
SetThreadPriorityBoost
VirtualQueryEx
UnlockFile
IsBadHugeWritePtr
GetProcessVersion
ReadConsoleOutputCharacterA
GetDefaultCommConfigA
CreateEventA
GetTempFileNameA
GetThreadLocale
_lopen
UpdateResourceA
CancelTimerQueueTimer
IsBadHugeWritePtr
FreeResource
CreateFileMappingW
AllocConsole
GetCPInfo
SetConsoleDisplayMode
GetConsoleAliasExesW
GlobalCompact
ReadConsoleA
GlobalFindAtomA
GetThreadContext
SetComputerNameExW
GetDevicePowerState
MoveFileWithProgressA
GetVolumePathNamesForVolumeNameA
CreateSemaphoreA

tapi32

lineAddProviderA

Sections

.itext
Size: - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.text
Size: 80KB - Virtual size: 740KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 56KB - Virtual size: 53KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 84KB - Virtual size: 82KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8a3fd42f3780dd59ea0f85f6b4fe6f82

Headers

File Characteristics

Imports

kernel32

tapi32

Sections

.itext Size: - Virtual size: 3KB

.text Size: 80KB - Virtual size: 740KB

.idata Size: 56KB - Virtual size: 53KB

.rsrc Size: 84KB - Virtual size: 82KB

.itext
Size: - Virtual size: 3KB

.text
Size: 80KB - Virtual size: 740KB

.idata
Size: 56KB - Virtual size: 53KB

.rsrc
Size: 84KB - Virtual size: 82KB