034236072a042c9048d3e650dd4ac153517d7530c919368a6cadea235cbc35fb

General

Target

034236072a042c9048d3e650dd4ac153517d7530c919368a6cadea235cbc35fb
Size

618KB
MD5

4eaf000361fd7261b5ddf9c2edee2641
SHA1

5b816dcff39b2bd989b8edeaaad034c35be09276
SHA256

034236072a042c9048d3e650dd4ac153517d7530c919368a6cadea235cbc35fb
SHA512

04130042c09eb7748d0931634cfdfaa97364a1dbf01d77db2fe21a385c8ac08cdfe691040aad4c92477b42b71d0dca8dcb9662101bac313e51c1c15b242d7bdc
SSDEEP

12288:53YDSg7ahvjzsVPLaN2f+qPwLShyndyWMO1rbFDMNL+BOnI:aGVj4VP62f+wwVrbFIIBCI

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
034236072a042c9048d3e650dd4ac153517d7530c919368a6cadea235cbc35fb

Files

034236072a042c9048d3e650dd4ac153517d7530c919368a6cadea235cbc35fb
.exe windows:4 windows x86 arch:x86

a9d998a521ad057eab6d098bdc3b4c34

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleA
GetTickCount
GetLastError
GetCurrentThreadId
GetVersion
GetCommandLineA
GetCurrentProcessId
GetCurrentThread
ExitProcess
HeapAlloc
GetProcessHeap
SetLastError
LocalAlloc
VirtualAlloc
FormatMessageA
Sleep
GetConsoleMode
SetCurrentDirectoryA
HeapCreate
GetTimeZoneInformation
TerminateProcess
FormatMessageW
LocalFree
SetEnvironmentVariableA
HeapReAlloc
CloseHandle
GetCurrentProcess
WriteFile
SetFilePointer
TlsFree
MapViewOfFile
WideCharToMultiByte
GetProcAddress
FreeEnvironmentStringsW
MultiByteToWideChar
GetCPInfo
GetLocaleInfoA
GetFileType
GetStartupInfoA
VirtualFree
lstrlenW
LoadLibraryA
GetEnvironmentStringsW
GetStringTypeW
GetThreadLocale
WaitForSingleObject
QueryPerformanceCounter
GetConsoleCP
LoadLibraryW
ReleaseMutex
LCMapStringW
EnterCriticalSection
GetStdHandle

user32

DestroyWindow
GetDesktopWindow
GetSubMenu
RegisterClassA
ReleaseDC
GetKeyState
GetDC
GetSysColor
IsWindowEnabled
MoveWindow
DispatchMessageA
SetWindowPos
ShowWindow
PostQuitMessage
SetFocus

Sections

.text
Size: 587KB - Virtual size: 909KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 15KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a9d998a521ad057eab6d098bdc3b4c34

Headers

File Characteristics

Imports

kernel32

user32

Sections

.text Size: 587KB - Virtual size: 909KB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 15KB - Virtual size: 15KB

.rsrc Size: 11KB - Virtual size: 10KB

.text
Size: 587KB - Virtual size: 909KB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 15KB - Virtual size: 15KB

.rsrc
Size: 11KB - Virtual size: 10KB