b96638f2aafe6d2c9876645e28ba2791

Sharing

Copy URL Twitter E-mail

General

Target

b96638f2aafe6d2c9876645e28ba2791
Size

159KB
MD5

b96638f2aafe6d2c9876645e28ba2791
SHA1

1145af6d83fc4c56aab737ddcb0e35f85fb54651
SHA256

9ee2f317b2c8631531eada899d54090fb0493e2575480a1e76b867219bc9e14c
SHA512

1fcd4676e583473f5e7dd9cc4778794ec882d408c1bec08cb70dab493687e034f058a62bde41e1cc3c15c20637350f7914f3e054d2fd23b3158e554c6d0f7435
SSDEEP

1536:wukH37d9LjwQg7nKBzELw4U3z2Pt8xUb:uXzLjwn7nnL0

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b96638f2aafe6d2c9876645e28ba2791

Files

b96638f2aafe6d2c9876645e28ba2791
.exe windows:1 windows x86 arch:x86

2d6177ead81ae5595694bd12ed051c1a

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetSystemTimeAsFileTime
SetEvent
QueryPerformanceCounter
MultiByteToWideChar
SetEvent
GetVersionExA
ExitProcess
GetLastError
FreeLibrary
LoadLibraryA
LoadLibraryW
CloseHandle
lstrcpyW
SetEvent
lstrcpyW
DeleteCriticalSection
lstrlenW
WriteFile
lstrcmpiW
GetCurrentProcessId
ReadFile
SetFilePointer
InitializeCriticalSection
WriteFile
FormatMessageW
GetModuleHandleA
HeapDestroy
GetStartupInfoW
GetCurrentProcess
SetLastError

Sections

.text
Size: 138KB - Virtual size: 152KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.text
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

2d6177ead81ae5595694bd12ed051c1a

Headers

File Characteristics

Imports

kernel32

Sections

.text Size: 138KB - Virtual size: 152KB

.text Size: 4KB - Virtual size: 4KB

.text Size: 1024B - Virtual size: 4KB

.text Size: 3KB - Virtual size: 4KB

.text Size: 1KB - Virtual size: 4KB

.text Size: 3KB - Virtual size: 3KB

.rsrc Size: 512B - Virtual size: 4KB

.text Size: 512B - Virtual size: 4KB

.text Size: 4KB - Virtual size: 4KB

.text Size: 2KB - Virtual size: 4KB

.text
Size: 138KB - Virtual size: 152KB

.text
Size: 4KB - Virtual size: 4KB

.text
Size: 1024B - Virtual size: 4KB

.text
Size: 3KB - Virtual size: 4KB

.text
Size: 1KB - Virtual size: 4KB

.text
Size: 3KB - Virtual size: 3KB

.rsrc
Size: 512B - Virtual size: 4KB

.text
Size: 512B - Virtual size: 4KB

.text
Size: 4KB - Virtual size: 4KB

.text
Size: 2KB - Virtual size: 4KB