b745d7b207bfc50e6e65309718e6109f

General

Target

b745d7b207bfc50e6e65309718e6109f
Size

3.4MB
MD5

b745d7b207bfc50e6e65309718e6109f
SHA1

d75b0c5bb215de84ea5c332c2f7c2a2c0a0fcf5d
SHA256

58e9e76a3dc613930ed9edebd2a64f6c6ae345ee9847e4ac0d0c9a6b9741523c
SHA512

1e55f9fef6db19e9064dd5a08b385b9dc0202a788814aca7b6b0c96e38f5c22e6c44cc6a86e3cf62ad03181b3a93b187fa67c444d750ea38ef17e57c31046a4b
SSDEEP

98304:tvZnCgr3CABF/nXj85z+arrQI98s6BxqPoBiw8bv:zCsB3/nXjkz+orQI9Wa

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b745d7b207bfc50e6e65309718e6109f

Files

b745d7b207bfc50e6e65309718e6109f
.exe windows:4 windows x86 arch:x86

141816dffd1fc2fb19288107c72e2bb7

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLastError
GetCurrentThreadId
GetSystemTimeAsFileTime
SetUnhandledExceptionFilter
GetModuleHandleW
QueryPerformanceCounter
UnhandledExceptionFilter
FreeLibrary
MultiByteToWideChar
SetLastError
HeapAlloc
DeleteCriticalSection
LeaveCriticalSection
WaitForSingleObject
GetProcessHeap
CreateFileW
IsDebuggerPresent
GetCommandLineW
GetACP
HeapReAlloc
FlushFileBuffers
CreateEventW
HeapSetInformation
HeapSize
LoadLibraryExW
GetCPInfo
TlsFree
SetFilePointer
RtlUnwind
GetModuleFileNameA
InitializeCriticalSectionAndSpinCount
GetOEMCP
FreeEnvironmentStringsW
FindNextFileW
IsValidCodePage
LocalAlloc
GetCommandLineA
DecodePointer
SetEndOfFile
ResetEvent
GetVersionExW
ReleaseMutex
VirtualFree
lstrlenW
GetModuleHandleExW
GetLocaleInfoW
GetExitCodeProcess

user32

TranslateMessage
DispatchMessageW
DestroyWindow
MessageBoxW
CreateWindowExW
SetWindowLongW
PostMessageW
GetClientRect
EnableWindow
IsWindow
LoadCursorW
GetParent
SetTimer
SetFocus
GetSysColor
PeekMessageW
BeginPaint
ScreenToClient
RegisterClassW
GetWindow
GetWindowTextW
SystemParametersInfoW
MessageBoxA
CharUpperW

Sections

.rdata
Size: 3.4MB - Virtual size: 3.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.text
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 612KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

141816dffd1fc2fb19288107c72e2bb7

Headers

File Characteristics

Imports

kernel32

user32

Sections

.rdata Size: 3.4MB - Virtual size: 3.4MB

.text Size: 6KB - Virtual size: 6KB

.data Size: - Virtual size: 612KB

.idata Size: 2KB - Virtual size: 1KB

.rdata
Size: 3.4MB - Virtual size: 3.4MB

.text
Size: 6KB - Virtual size: 6KB

.data
Size: - Virtual size: 612KB

.idata
Size: 2KB - Virtual size: 1KB