aa6aa5a025aa4a65c0bda440b394b09f

Sharing

Copy URL Twitter E-mail

General

Target

aa6aa5a025aa4a65c0bda440b394b09f
Size

93KB
MD5

aa6aa5a025aa4a65c0bda440b394b09f
SHA1

004efce259e93001a8932173451520405de425db
SHA256

8ec63327c3dd41d38e777b59d6a2c6a40ee7356d04903a9334353f8cb2c45802
SHA512

1f8b470df199045f35810975b9cf501265f5a273c4a5b4a6a0bb15ec55299dada565a9b9b189f38e0752556e0773c0eeea948d8c5f5624a7717f620081a9f523
SSDEEP

1536:VRPZX4xR2dO4/OkGQWHXdNGAFN8eJv9DF:9X4xR2nUvXdNGu8eJv

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
aa6aa5a025aa4a65c0bda440b394b09f

Files

aa6aa5a025aa4a65c0bda440b394b09f
.exe windows:4 windows x86 arch:x86

5d18218d137825727e12d2742438046b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

CloseHandle
CompareStringA
CompareStringW
CopyFileA
CreateDirectoryA
CreateEventA
CreateFileA
CreateProcessA
CreateThread
DeleteCriticalSection
EnterCriticalSection
EnumCalendarInfoA
EnumResourceLanguagesA
EnumResourceNamesA
EnumResourceTypesA
ExitProcess
ExitThread
FillConsoleOutputAttribute
FillConsoleOutputCharacterA
FindResourceA
FindResourceExA
FormatMessageA
FreeEnvironmentStringsA
FreeLibrary
FreeResource
GetACP
GetCommandLineA
GetConsoleCursorInfo
GetConsoleMode
GetConsoleOutputCP
GetConsoleScreenBufferInfo
GetCurrentDirectoryA
GetCurrentProcess
GetCurrentProcessId
GetCurrentThreadId
GetEnvironmentStringsA
GetExitCodeProcess
GetFileAttributesA
GetFileType
GetLastError
GetLocaleInfoA
GetModuleFileNameA
GetModuleHandleA
GetNumberOfConsoleInputEvents
GetProcAddress
GetProcessHeap
GetStartupInfoA
GetStdHandle
GetThreadLocale
GetThreadPriority
GetUserDefaultLCID
GetVersionExA
GetWindowsDirectoryA
HeapAlloc
HeapFree
InitializeCriticalSection
LeaveCriticalSection
LoadResource
LocalAlloc
LocalFree
LockResource
MultiByteToWideChar
ReadConsoleInputA
ReadFile
ReadProcessMemory
RemoveDirectoryA
ResetEvent
ResumeThread
ScrollConsoleScreenBufferA
SetConsoleCursorPosition
SetConsoleOutputCP
SetCurrentDirectoryA
SetErrorMode
SetEvent
SetFilePointer
SetLastError
SetThreadLocale
SetThreadPriority
SetUnhandledExceptionFilter
SizeofResource
Sleep
SuspendThread
TerminateThread
TlsAlloc
TlsGetValue
TlsSetValue
TryEnterCriticalSection
WaitForSingleObject
WideCharToMultiByte
WriteConsoleOutputAttribute
WriteConsoleOutputCharacterA
WriteFile

oleaut32

SysAllocStringLen
SysFreeString
SysReAllocStringLen

user32

CharLowerA
CharLowerBuffA
CharLowerBuffW
CharUpperA
CharUpperBuffA
CharUpperBuffW
GetSystemMetrics
MessageBeep
MessageBoxA
SetActiveWindow

Sections

.text
Size: 74KB - Virtual size: 73KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: - Virtual size: 8KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 512B - Virtual size: 4B

IMAGE_SCN_MEM_DISCARDABLE

.idata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

5d18218d137825727e12d2742438046b

Headers

File Characteristics

Imports

kernel32

oleaut32

user32

Sections

.text Size: 74KB - Virtual size: 73KB

.data Size: 14KB - Virtual size: 14KB

.bss Size: - Virtual size: 8KB

.CRT Size: 512B - Virtual size: 4B

.idata Size: 3KB - Virtual size: 3KB

.text
Size: 74KB - Virtual size: 73KB

.data
Size: 14KB - Virtual size: 14KB

.bss
Size: - Virtual size: 8KB

.CRT
Size: 512B - Virtual size: 4B

.idata
Size: 3KB - Virtual size: 3KB