ac91e87296537eae81fa087c445eaf0c

General

Target

ac91e87296537eae81fa087c445eaf0c
Size

4.2MB
MD5

ac91e87296537eae81fa087c445eaf0c
SHA1

49841591f96a852edb127a2adf6757dafef52e9e
SHA256

e83205f5fe2d556cb20cc6750182a7a38206dc618078c75045cb30c51b043bf1
SHA512

b08f54c8674133de3dcca969867f01ca0fe0f55fd5beff413d9d0e8eb5aa6ed0faa9d5788a0e20cc94b4cf760a9d29b0d2c09bfbabea7235ab3b2245e427de97
SSDEEP

98304:7NAlF+OPHPNfHII8q7CX6OAOtwnwV9JgJY2UzrV7VWxCICjZqAyY85:7NLAvlIIwhAOtww2JYD7woIZ885

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ac91e87296537eae81fa087c445eaf0c

Files

ac91e87296537eae81fa087c445eaf0c
.exe windows:5 windows x86 arch:x86

2ba7fecf9818b5408e838d850ffb4c75

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

IsBadReadPtr
GetCurrentDirectoryA
CancelTimerQueueTimer
GetDriveTypeA
IsBadCodePtr
SetPriorityClass
FlushConsoleInputBuffer
SetHandleInformation
ExitThread
SignalObjectAndWait
GetConsoleMode
DeleteTimerQueueEx
VirtualAlloc
LoadLibraryExW
IsBadWritePtr
WriteProfileStringA
GetFileAttributesExA
HeapFree
GetTickCount
GetVolumePathNameA
LZStart
FindFirstVolumeMountPointW
GlobalFix
ClearCommError
GetVDMCurrentDirectories
OpenThread
GetLocalTime
CompareStringA
UpdateResourceA
GetThreadTimes
OpenSemaphoreA
LocalCompact
LoadResource

advapi32

DecryptFileA

user32

InsertMenuItemA
IsServerSideWindow
CascadeChildWindows
SetProcessWindowStation
SetCursorContents
GetWindowContextHelpId
ExitWindowsEx
SetMenuInfo
IsCharAlphaNumericW
GrayStringA
GetUpdateRgn
OemKeyScan
CharToOemBuffA
GetKeyboardLayoutNameA
CloseWindow
CreateSystemThreads
PrivateExtractIconExA
GetDlgItem
GetOpenClipboardWindow
CreatePopupMenu
SetWindowRgn
ClientToScreen
RealChildWindowFromPoint
DestroyAcceleratorTable
GetForegroundWindow
EnumDesktopsA
GetMenuInfo
DrawCaptionTempA
GetWindowTextW
SetRectEmpty
PostQuitMessage
IsZoomed
GetDC
PtInRect
EnumPropsExA

Sections

.text
Size: 2.5MB - Virtual size: 6.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1.7MB - Virtual size: 1.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2ba7fecf9818b5408e838d850ffb4c75

Headers

File Characteristics

Imports

kernel32

advapi32

user32

Sections

.text Size: 2.5MB - Virtual size: 6.2MB

.idata Size: 2KB - Virtual size: 1KB

.rsrc Size: 1.7MB - Virtual size: 1.7MB

.text
Size: 2.5MB - Virtual size: 6.2MB

.idata
Size: 2KB - Virtual size: 1KB

.rsrc
Size: 1.7MB - Virtual size: 1.7MB