a3b344f44d70800c9453c007504e8d1d

General

Target

a3b344f44d70800c9453c007504e8d1d
Size

170KB
MD5

a3b344f44d70800c9453c007504e8d1d
SHA1

148ea8bf63009931f3bdc76afb926b046a69c678
SHA256

f3e6ec3798e90e76410ea5acbf0c370fc81c6972f192fcc5e18a127a1655d800
SHA512

3cddd1f90199c72ad737a050196abb1694121489f256c7a2c43a66635e5158281ce4b29e7b4884416ee39eabdc3a630dc63adcc4168e05468ea93c77c1d1d2e4
SSDEEP

3072:QorKzE78VQt4rgJ5vmJOhPIRcEYPq3VJ01+DF6agleU:QorKzE96rWvmUPjy3VLPs

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a3b344f44d70800c9453c007504e8d1d

Files

a3b344f44d70800c9453c007504e8d1d
.exe windows:4 windows x86 arch:x86

90c5a0645b528bd44a9dd71c9ca13aac

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

ReleaseDC
IsRectEmpty
CopyRect
GetDC
SetRectEmpty
PeekMessageW
wsprintfW
OffsetRect
FillRect
TranslateMessage
DispatchMessageW
GetClientRect
GetWindowRect

avifil32

AVISaveOptions
AVIMakeCompressedStream

winmm

timeGetTime

kernel32

GetShortPathNameA
LoadLibraryW
ReleaseMutex
GetTempPathA
OutputDebugStringW
SetFileAttributesW
MultiByteToWideChar
ReadFile
LocalFree
EnterCriticalSection
DisableThreadLibraryCalls
GetLastError
GetProcessAffinityMask
QueryPerformanceCounter
TerminateProcess
LocalAlloc
SetFilePointer
SetFileAttributesA
InterlockedIncrement
GetTickCount
GetCurrentProcessId
EnumResourceTypesW
lstrlenA
LeaveCriticalSection
GetTempFileNameW
FreeLibrary
GetCurrentThreadId
DeleteFileA
CopyFileA
OutputDebugStringA
GetModuleFileNameA
GetSystemTime
CreateDirectoryA
InterlockedDecrement
CloseHandle
GetVersionExA
GetFileAttributesA
WideCharToMultiByte
WriteFile
WaitForSingleObject
CreateFileA
GetTempPathW
GetProcAddress
CreateMutexA
GetTempFileNameA
GetSystemTimeAsFileTime

Sections

.text
Size: 98KB - Virtual size: 98KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: 68KB - Virtual size: 67KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 1024B - Virtual size: 256KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

90c5a0645b528bd44a9dd71c9ca13aac

Headers

File Characteristics

Imports

user32

avifil32

winmm

kernel32

Sections

.text Size: 98KB - Virtual size: 98KB

.rdata Size: 2KB - Virtual size: 1KB

.bss Size: 68KB - Virtual size: 67KB

.tls Size: 1024B - Virtual size: 256KB

.text
Size: 98KB - Virtual size: 98KB

.rdata
Size: 2KB - Virtual size: 1KB

.bss
Size: 68KB - Virtual size: 67KB

.tls
Size: 1024B - Virtual size: 256KB