bad33f38144e62bae57e6c4ec1e39fac

General

Target

bad33f38144e62bae57e6c4ec1e39fac
Size

56KB
MD5

bad33f38144e62bae57e6c4ec1e39fac
SHA1

1953a099e099dc8e3f3d08b6f6bc59ede08070ed
SHA256

ae76057a68af1dad3ea18939968791d38d52d3fbf3e182c6429fe1450b3a54a7
SHA512

7f691f56c4d258eae8ca3146309af738b8d3f6b2dd8a13db928d52e3084f91f6c45efb56fd25446031171ce941969aec769e04032a0e00b2b539b5e700ee112f
SSDEEP

768:W3dU8KQ7qJRQjnHy6QlyXqWG90gUl9MCmOGHPLLXo94m8:+dUaMRknHyWaWybOGHvoD8

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bad33f38144e62bae57e6c4ec1e39fac

Files

bad33f38144e62bae57e6c4ec1e39fac
.dll windows:4 windows x86 arch:x86

0b23a1ca1820d6ccfc61c62c6302417a

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

TlsAlloc
VirtualAlloc
GetSystemTimeAsFileTime
CloseHandle
GetStdHandle
GetCurrentThreadId
GetCurrentProcessId
GetVersion
GetProcAddress
VirtualFree
LoadLibraryA
GetTickCount
GetStringTypeW
GetStringTypeA
LCMapStringW
GetCommandLineA
ExitProcess
TerminateProcess
GetCurrentProcess
HeapDestroy
HeapCreate
HeapFree
SetHandleCount
GetFileType
GetStartupInfoA
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
WriteFile
HeapAlloc
HeapReAlloc
GetCPInfo
GetACP
GetOEMCP
MultiByteToWideChar
LCMapStringA
RtlUnwind

ole32

CoTaskMemAlloc
CoInitialize

Exports

Exports

BindISP

Sections

.text
Size: 16KB - Virtual size: 14KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.CODEA
Size: 12KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.CODEB
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0b23a1ca1820d6ccfc61c62c6302417a

Headers

File Characteristics

Imports

kernel32

ole32

Exports

Exports

Sections

.text Size: 16KB - Virtual size: 14KB

.CODEA Size: 12KB - Virtual size: 10KB

.CODEB Size: 8KB - Virtual size: 6KB

.rdata Size: 4KB - Virtual size: 2KB

.data Size: 4KB - Virtual size: 6KB

.rsrc Size: 4KB - Virtual size: 3KB

.reloc Size: 4KB - Virtual size: 1KB

.text
Size: 16KB - Virtual size: 14KB

.CODEA
Size: 12KB - Virtual size: 10KB

.CODEB
Size: 8KB - Virtual size: 6KB

.rdata
Size: 4KB - Virtual size: 2KB

.data
Size: 4KB - Virtual size: 6KB

.rsrc
Size: 4KB - Virtual size: 3KB

.reloc
Size: 4KB - Virtual size: 1KB