b84d42802463e5b5e1e96e845150cc97

General

Target

b84d42802463e5b5e1e96e845150cc97
Size

30KB
MD5

b84d42802463e5b5e1e96e845150cc97
SHA1

794687b5acf0c36b029a224cb4c35604ba68905c
SHA256

c268c32e4499ba2efd7b0cd36f4d9ec47e908c66cba80277b3c4cf76d2a231e8
SHA512

2def1b394cbff59db7a021df887f1a7d33f82a841908b67d0f9f1d640fc7fd4b284da7577e9b9f95fbe193cdf6ae12833d15d05dcac38f5c05d6f00440f9bf9e
SSDEEP

768:yI9M1E1g310zV++IOp46euapPJpoJs66FGNT:721J3xc+lpPTUmgT

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b84d42802463e5b5e1e96e845150cc97

Files

b84d42802463e5b5e1e96e845150cc97
.exe windows:4 windows x86 arch:x86

4bb03ced8fc79dd446d01a719ff5a570

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

HeapFree
GetStringTypeA
GetSystemTimeAsFileTime
GetTimeZoneInformation
LCMapStringA
WriteConsoleA
GetExitCodeThread
CopyFileA
GetCurrentThreadId
CreateProcessA
RemoveDirectoryA
WriteConsoleW
GetBinaryTypeA
GetProcAddress
GetCommandLineA
GetSystemPowerStatus
HeapSize
LeaveCriticalSection
GlobalCompact
GetFileAttributesA
GetFileSize
GetLocaleInfoA
GetStringTypeW
HeapAlloc
GetModuleHandleA
GetStartupInfoA
GetModuleFileNameA
LCMapStringW
GetCurrentProcessId
InterlockedDecrement
GetConsoleCP
GetConsoleMode
FindNextFileA
ExitProcess
GetExitCodeProcess
SetEndOfFile
TerminateProcess
GetVersionExA
SetUnhandledExceptionFilter
TerminateJobObject
IsDebuggerPresent
GetProcessHeap
MoveFileA
IsValidCodePage
GetCurrentProcess
GetStdHandle
EnterCriticalSection
WaitForSingleObjectEx
LoadLibraryA
GetThreadPriority
DeleteCriticalSection
GetLastError
GetUserDefaultUILanguage
UnhandledExceptionFilter
GetTempPathA
CreateEventW
GetTickCount
GetCurrentProcessId
SetEvent
Sleep

shell32

SHBrowseForFolderA

msvcrt

__set_app_type
_controlfp
_except_handler3
__setusermatherr
__p__commode
__p__fmode

user32

CreateWindowExW
ToUnicodeEx
GetMenuStringW
UpdateWindow
PostQuitMessage
MapVirtualKeyExW
GetClassInfoW
InvertRect

version

GetFileVersionInfoW
VerQueryValueW
GetFileVersionInfoSizeW

Sections

.text
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data1
Size: 14KB - Virtual size: 47KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4bb03ced8fc79dd446d01a719ff5a570

Headers

File Characteristics

Imports

kernel32

shell32

msvcrt

user32

version

Sections

.text Size: 9KB - Virtual size: 8KB

.data Size: 4KB - Virtual size: 5KB

.rsrc Size: 2KB - Virtual size: 1KB

.data1 Size: 14KB - Virtual size: 47KB

.text
Size: 9KB - Virtual size: 8KB

.data
Size: 4KB - Virtual size: 5KB

.rsrc
Size: 2KB - Virtual size: 1KB

.data1
Size: 14KB - Virtual size: 47KB