b7adb94ac0b52c91cff061ccb92bf032

General

Target

b7adb94ac0b52c91cff061ccb92bf032
Size

420KB
MD5

b7adb94ac0b52c91cff061ccb92bf032
SHA1

5db524b491f76ff62170e70f261514e964d18cf3
SHA256

ca96ab0bb33f57b1974aac17b6355a9ac65edb1224b6890d3aaadbe4622b52f1
SHA512

da5100a0d0c6d756d80c99bb39c81c1da92c586efad4e11383039bdd84254ec1b555525d8575ac6efdaad50bea54d499ab5882f3440e859359815e468f803c96
SSDEEP

12288:P+PB17fYLWNO2teaxndWxfYMRJ5QTLftS:IfYLl2MavObQ3ft

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b7adb94ac0b52c91cff061ccb92bf032

Files

b7adb94ac0b52c91cff061ccb92bf032
.exe windows:4 windows x86 arch:x86

027bb24f58b76761c3c8dafd5b423d0d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryExW
SetConsoleTitleA
GetTickCount
GetCurrentProcess
GetSystemTimeAsFileTime
MultiByteToWideChar
GetLastError
GetLocaleInfoW
EnumSystemLocalesA
SetHandleCount
RtlUnwind
WideCharToMultiByte
SetLastError
TlsFree
GetFileType
CompareStringW
ExitProcess
IsBadWritePtr
GetVersionExA
HeapSize
GetCommandLineA
GetCurrentThread
SetThreadContext
GetStartupInfoA
GetOEMCP
GetProfileIntW
TlsGetValue
GetACP
EnterCriticalSection
HeapFree
UnhandledExceptionFilter
HeapDestroy
WriteFile
GetUserDefaultLCID
GetCurrentThreadId
TerminateProcess
LeaveCriticalSection
GetCurrentProcessId
GetCPInfo
HeapAlloc
HeapReAlloc
HeapCreate
IsValidCodePage
GetStringTypeA
GetTimeZoneInformation
GetEnvironmentStrings
VirtualQuery
GetTempPathW
VirtualAlloc
CompareStringA
GetStdHandle
InterlockedExchange
GetTimeFormatA
LoadLibraryA
GetProcAddress
TlsAlloc
GetSystemInfo
LCMapStringW
DeleteCriticalSection
GetDateFormatA
GetStringTypeW
VirtualFree
QueryPerformanceCounter
GetLocaleInfoA
TlsSetValue
SetEnvironmentVariableA
FreeEnvironmentStringsW
GetEnvironmentStringsW
FreeEnvironmentStringsA
GetModuleHandleA
SetLocaleInfoW
LCMapStringA
VirtualProtect
IsValidLocale
GetModuleFileNameA
InitializeCriticalSection

gdi32

GetGraphicsMode
SetRectRgn
SetPixel
TextOutA
CombineTransform
CreateDIBPatternBrush
GetCharABCWidthsW
MaskBlt
GetTextColor
EndPage
GetEnhMetaFileHeader
RectInRegion

Sections

.text
Size: 129KB - Virtual size: 129KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 7KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 278KB - Virtual size: 277KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

027bb24f58b76761c3c8dafd5b423d0d

Headers

File Characteristics

Imports

kernel32

gdi32

Sections

.text Size: 129KB - Virtual size: 129KB

.rdata Size: 7KB - Virtual size: 18KB

.data Size: 278KB - Virtual size: 277KB

.rsrc Size: 4KB - Virtual size: 4KB

.text
Size: 129KB - Virtual size: 129KB

.rdata
Size: 7KB - Virtual size: 18KB

.data
Size: 278KB - Virtual size: 277KB

.rsrc
Size: 4KB - Virtual size: 4KB