b3e9115b49e7bfd583a58a31d14186df

General

Target

b3e9115b49e7bfd583a58a31d14186df
Size

25KB
MD5

b3e9115b49e7bfd583a58a31d14186df
SHA1

621229aa5862cb54203088fd14799e3e9bab9131
SHA256

9f44744945631b1da5908dfd7f5470d1e834a0090e911f5f3d39424b533b07a3
SHA512

18ee029f09fca1fbcd67e953299852e663fe11dfaa575077b4a138a43358335c048cbb65be00a10e1a683bfb8886a0123c41c92902558d69624fb83a905df6cc
SSDEEP

384:7/ydV7uoOOuK+5VdC33UbUd06RvIgS+MXAvvFn6sr/bsirhNhQ4rM/RmHYJLDCR8:zydV7SCkvqMw1vbvhfr6RmmLQbCgF0P

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b3e9115b49e7bfd583a58a31d14186df

Files

b3e9115b49e7bfd583a58a31d14186df
.exe windows:4 windows x86 arch:x86

a3db6de1f5f953c45328e1c2e035beab

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCurrentThread
SetPriorityClass
GetCurrentProcess
GetEnvironmentVariableA
GetShortPathNameA
GetModuleFileNameA
CreateThread
CloseHandle
GetLastError
SetProcessWorkingSetSize
WinExec
GetProcAddress
SetThreadPriority
GetTempPathA
ReleaseMutex
OpenMutexA
WaitForSingleObject
ExitProcess
CreateMutexA
MoveFileExA
CopyFileA
GlobalMemoryStatusEx
GetLocaleInfoW
GetModuleHandleA
GetStartupInfoA
ResumeThread
CreateProcessA
TerminateProcess
Sleep
ExitThread
GetSystemDirectoryA
lstrcatA
lstrcpyA
LoadLibraryA
GetTickCount

user32

GetDesktopWindow
ExitWindowsEx
wsprintfA

advapi32

RegQueryValueExA
OpenSCManagerA
OpenServiceA
DeleteService
OpenProcessToken
LookupPrivilegeValueA
AdjustTokenPrivileges
RegOpenKeyExA
RegCloseKey

shell32

ShellExecuteA

ws2_32

htonl
recv
WSASocketA
WSAStartup
send
setsockopt
WSAIoctl
inet_addr
gethostbyname
socket
htons
connect
closesocket
__WSAFDIsSet
select
sendto

msvcrt

__CxxFrameHandler
strncpy
_controlfp
_except_handler3
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
_acmdln
_XcptFilter
_exit
??1type_info@@UAE@XZ
??3@YAXPAX@Z
exit
strstr
rand
sprintf
malloc
realloc
atoi
_CxxThrowException
strcspn

Sections

.data
Size: 17KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a3db6de1f5f953c45328e1c2e035beab

Headers

File Characteristics

Imports

kernel32

user32

advapi32

shell32

ws2_32

msvcrt

Sections

.data Size: 17KB - Virtual size: 17KB

.rsrc Size: 1KB - Virtual size: 4KB

.data
Size: 17KB - Virtual size: 17KB

.rsrc
Size: 1KB - Virtual size: 4KB