a3c21cc3513efbee8e32485349ce0702

General

Target

a3c21cc3513efbee8e32485349ce0702
Size

3.4MB
MD5

a3c21cc3513efbee8e32485349ce0702
SHA1

58e7f008c5855051612d09f437d8bb2dd4b149ee
SHA256

2ec8b4a0213c329340af2c720c4d253ee2153cf1466f2d2c3de3942ed2d7ba68
SHA512

8752eca1c7302fa3cbfdfaf27a436335087a70ef6da5f0abf09593ea070da8d0915fa4e2079f6c929a7503088e2c2465c2bc9e1f733726f7f17db1817c4a0445
SSDEEP

98304:aqzidroX8hoCFmPjsprNj0RcJuXQ1jd8lTOjjcMCS:a9lyimPjWBrJuZ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a3c21cc3513efbee8e32485349ce0702

Files

a3c21cc3513efbee8e32485349ce0702
.exe windows:4 windows x86 arch:x86

d8cd31d8f9addcdddc2562dae5301b42

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetSystemTimeAsFileTime
SetUnhandledExceptionFilter
QueryPerformanceCounter
GetProcAddress
CloseHandle
TerminateProcess
UnhandledExceptionFilter
Sleep
FreeLibrary
WideCharToMultiByte
HeapAlloc
LocalFree
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
WriteFile
ExitProcess
GetModuleFileNameW
IsDebuggerPresent
GetCommandLineW
FindClose
RaiseException
FormatMessageW
TlsGetValue
HeapReAlloc
FlushFileBuffers
TlsSetValue
CreateEventW
TlsAlloc
WriteConsoleW
LoadLibraryW
TlsFree
GetFileAttributesW
GetStringTypeW
RtlUnwind
GetOEMCP
FreeEnvironmentStringsW
IsProcessorFeaturePresent
FindNextFileW
DeleteFileW
GetConsoleCP
LocalAlloc
DecodePointer
SetEndOfFile
GetVersionExW
GetFileSize
EncodePointer
lstrlenW
GetModuleHandleExW
GetLocaleInfoW
CreateDirectoryW
GetFullPathNameW
GetExitCodeProcess
ExpandEnvironmentStringsW

user32

TranslateMessage
LoadStringW
DispatchMessageW
ShowWindow
DestroyWindow
DefWindowProcW
PostQuitMessage
CreateWindowExW
SetWindowLongW
GetWindowLongW
GetMessageW
GetDC
PostMessageW
SetWindowPos
IsWindow
SetWindowTextW
SetTimer
SetFocus
SetForegroundWindow
GetSysColor
EndPaint
ScreenToClient
SetCursor
EnableMenuItem
GetWindow
GetWindowTextW
CharUpperW
ClientToScreen

Sections

.text
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 612KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 3.4MB - Virtual size: 3.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d8cd31d8f9addcdddc2562dae5301b42

Headers

File Characteristics

Imports

kernel32

user32

Sections

.text Size: 6KB - Virtual size: 6KB

.data Size: - Virtual size: 612KB

.rdata Size: 3.4MB - Virtual size: 3.4MB

.idata Size: 2KB - Virtual size: 2KB

.text
Size: 6KB - Virtual size: 6KB

.data
Size: - Virtual size: 612KB

.rdata
Size: 3.4MB - Virtual size: 3.4MB

.idata
Size: 2KB - Virtual size: 2KB