ab97d4017f7b82efa0c9b82a4323732e

General

Target

ab97d4017f7b82efa0c9b82a4323732e
Size

176KB
MD5

ab97d4017f7b82efa0c9b82a4323732e
SHA1

0009c8d34d69a8c611d237e77c955aa23ad20d1f
SHA256

bba1b22b6fd8ef783a07c83dac585085798a59499ed360d7b1be0abc82178fcb
SHA512

e81226504e018afc22ea7a586ae7a60a6d0853fe4ffbb556001391fc1a54a3fa03693a20d3a1a6457fd8ce7e5357c7a0d563d59268cf39e7d42410aba34aaee7
SSDEEP

3072:LIcxIJ7bViR/mtTwMT56VbwSu8jzIh/7gQDO8DADumC00YIF4H:UcATXT56BPuCs/3DTXmlL7

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ab97d4017f7b82efa0c9b82a4323732e

Files

ab97d4017f7b82efa0c9b82a4323732e
.exe windows:4 windows x86 arch:x86

2a6e76b55332336571f9849900b1c3ab

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetVolumeNameForVolumeMountPointA
GlobalLock
GetConsoleAliasExesLengthW
GetPrivateProfileIntA
GlobalFix
SetFileApisToOEM
GlobalMemoryStatusEx
GetCurrentThread
GetProcessVersion
GetCurrentThreadId
ResetWriteWatch
ReadFileScatter
SetFileAttributesA
GetNumberOfConsoleInputEvents
GetFileSize
FindResourceExW
TransmitCommChar
WriteConsoleOutputCharacterW
PeekConsoleInputA
SetFilePointer
GetVolumePathNamesForVolumeNameA
MapViewOfFileEx
DisconnectNamedPipe
QueryPerformanceFrequency
MoveFileExW
GetCommandLineA
SetDefaultCommConfigA
GlobalReAlloc
GetConsoleTitleA
CreateMutexA
WriteFileEx
GetVersionExA
GetStdHandle
VirtualAlloc
SetComputerNameExA
OpenMutexA
GlobalHandle
DeleteAtom
DeleteTimerQueue
GetFileAttributesExA
PurgeComm
GlobalFindAtomA
GetSystemDirectoryA
HeapCreate
IsBadStringPtrA
OpenSemaphoreA
GetVolumePathNameA
SetDllDirectoryA
GetLongPathNameA
GetConsoleCursorMode
GetModuleHandleA
ReadConsoleA
SetEvent
Module32Next
WriteConsoleA
ReplaceFileA
FindFirstVolumeA
lstrcpynA
HeapDestroy
GetExitCodeThread
GetEnvironmentStringsA
FindNextChangeNotification
GetVersionExA
CopyFileExA
FreeConsole
GetConsoleOutputCP

wininet

FtpSetCurrentDirectoryW
FtpSetCurrentDirectoryW

winmm

timeGetTime
timeGetSystemTime

Sections

.text
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.itext
Size: 164KB - Virtual size: 171KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2a6e76b55332336571f9849900b1c3ab

Headers

File Characteristics

Imports

kernel32

wininet

winmm

Sections

.text Size: - Virtual size: 2KB

.itext Size: 164KB - Virtual size: 171KB

.idata Size: 4KB - Virtual size: 2KB

.rsrc Size: 4KB - Virtual size: 1KB

.text
Size: - Virtual size: 2KB

.itext
Size: 164KB - Virtual size: 171KB

.idata
Size: 4KB - Virtual size: 2KB

.rsrc
Size: 4KB - Virtual size: 1KB