a2c6c4f8a281c25e3b2d6f39ab1f62fd

General

Target

a2c6c4f8a281c25e3b2d6f39ab1f62fd
Size

108KB
MD5

a2c6c4f8a281c25e3b2d6f39ab1f62fd
SHA1

659e12583e02c44d728327418b0f8d19acf6eb6f
SHA256

4f05caea404e35b5b7a98fc8886a47d0ca6021582c3ed597b4833fdb553a127f
SHA512

02bb47bd080164b85600ad332f3a89dca870190732d73fab103d17b3021073fd91718ee7bbfc537749c0d0597aa54d2ae9f0bd313d149ec397a6b1882b475862
SSDEEP

3072:3PGzkXkGtNCXRIBUf8TM12EXsXDRJxF60isqjhRuWEL83UXEPNUSQBFJg5Ksxdf5:31z+2OkQ1VcXDRJxF60isqjhRD3CEPNZ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a2c6c4f8a281c25e3b2d6f39ab1f62fd

Files

a2c6c4f8a281c25e3b2d6f39ab1f62fd
.exe windows:4 windows x86 arch:x86

f95d0872f96c38f691ec3bf1c2866a12

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

ole32

CoCreateInstance
CoInitialize

oleaut32

VariantInit

kernel32

AddAtomA
CreateSemaphoreA
ExitProcess
FindAtomA
GetAtomNameA
GetCommandLineA
GetLastError
GetModuleHandleA
GetStartupInfoA
InterlockedDecrement
InterlockedIncrement
ReleaseSemaphore
SetLastError
SetUnhandledExceptionFilter
Sleep
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue
WaitForSingleObject

msvcrt

__getmainargs
__p__environ
__p__fmode
__set_app_type
_assert
_cexit
_iob
_onexit
_setmode
abort
atexit
fflush
fgets
fopen
fprintf
free
malloc
memchr
memcpy
memmove
memset
signal
strcmp
strlen

user32

FindWindowA
GetForegroundWindow
SendMessageA
SetForegroundWindow
ShowWindow
VkKeyScanA
keybd_event

Sections

.text
Size: 45KB - Virtual size: 44KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 112B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 16KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 956B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

f95d0872f96c38f691ec3bf1c2866a12

Headers

File Characteristics

Imports

ole32

oleaut32

kernel32

msvcrt

user32

Sections

.text Size: 45KB - Virtual size: 44KB

.data Size: 512B - Virtual size: 112B

.rdata Size: 2KB - Virtual size: 2KB

.bss Size: - Virtual size: 16KB

.idata Size: 2KB - Virtual size: 1KB

.rsrc Size: 1024B - Virtual size: 956B

.text
Size: 45KB - Virtual size: 44KB

.data
Size: 512B - Virtual size: 112B

.rdata
Size: 2KB - Virtual size: 2KB

.bss
Size: - Virtual size: 16KB

.idata
Size: 2KB - Virtual size: 1KB

.rsrc
Size: 1024B - Virtual size: 956B