ad67b6fac6be889bf3845b5be75e0715

General

Target

ad67b6fac6be889bf3845b5be75e0715
Size

164KB
MD5

ad67b6fac6be889bf3845b5be75e0715
SHA1

8d1e7dda492d6dddcead797b52979c1baffc5a77
SHA256

ec155271368deb487e9b9511261102289b09e8fdeaf81138c8e181746cf261bc
SHA512

44b3ab593b3cf106449eff199fbaa773eb8cbe0fb7174cff3257b6d968e85a9bbfe2516b7a5bb625a73841232f369c21cab0cde11a17ad4e92f319e742a7c664
SSDEEP

3072:Ay11Z4oCZpZ+2/u3jCkwwyqN/GJ2KfJ0xVdUpLughILqY4cuGUXwdJyv:zr4C2/CjCk5yi/02bdUgdzJUXy

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ad67b6fac6be889bf3845b5be75e0715

Files

ad67b6fac6be889bf3845b5be75e0715
.exe windows:4 windows x86 arch:x86

c2c943e16a19786b8fd4cb895bba6e0e

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FindFirstFileW
GlobalGetAtomNameA
GlobalAlloc
FindClose
GetFileAttributesW
LoadResource
GetModuleFileNameW
FileTimeToSystemTime
GetLocaleInfoW
GetLastError
DeleteCriticalSection
GetPrivateProfileStringW
GetVersion
GlobalLock
WritePrivateProfileStringW
GetCurrentDirectoryW
GetVersionExA
WaitForSingleObject
InterlockedIncrement
LoadLibraryW
FreeLibrary
lstrcmpW
WideCharToMultiByte
LoadLibraryExW
GlobalSize
GetTickCount
MultiByteToWideChar
GlobalFree
GetModuleHandleW
EnumResourceTypesA
LockResource
CloseHandle
lstrlenW
IsValidCodePage
FileTimeToLocalFileTime
GetProcAddress
GetPrivateProfileIntW
DeleteFileW
lstrcpynW
lstrcpyW
GetVersionExW
LoadLibraryA
Sleep
GetCurrentThreadId
InitializeCriticalSection
SetFileAttributesW
FindCloseChangeNotification
GlobalUnlock
FindNextChangeNotification
ResumeThread
MulDiv
FindResourceW
FindFirstChangeNotificationW
SetThreadPriority

shell32

SHIsFileAvailableOffline
SHBrowseForFolderA
SHGetFileInfoA
SHGetPathFromIDListA
SHGetFolderPathW
ShellExecuteW
CommandLineToArgvW
ShellExecuteExA
SHFileOperationW
ShellExecuteExW
Shell_NotifyIconA

Sections

.text
Size: 75KB - Virtual size: 74KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 405KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 86KB - Virtual size: 85KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c2c943e16a19786b8fd4cb895bba6e0e

Headers

File Characteristics

Imports

kernel32

shell32

Sections

.text Size: 75KB - Virtual size: 74KB

.rdata Size: 2KB - Virtual size: 405KB

.data Size: 86KB - Virtual size: 85KB

.rsrc Size: 512B - Virtual size: 4KB

.text
Size: 75KB - Virtual size: 74KB

.rdata
Size: 2KB - Virtual size: 405KB

.data
Size: 86KB - Virtual size: 85KB

.rsrc
Size: 512B - Virtual size: 4KB