beea49f17f7fec2d7df6fa68dd53cbfa

General

Target

beea49f17f7fec2d7df6fa68dd53cbfa
Size

440KB
MD5

beea49f17f7fec2d7df6fa68dd53cbfa
SHA1

df991354cb283b399881586c8af513c6593a61da
SHA256

e996f07b5fbd9e5c4b5080641ea5ed225445e8cd64d2e22fb091a50e2f8f2a1a
SHA512

c983bbb8b29a4d1cb2b9c9ecce4a9594e30cc184b63c60aa7df21248231765bd4537b11167dc61bf5ce8b4d923813877abed252b810c8409dddc253f13f02fdc
SSDEEP

12288:yT7ENMwQMFtOMzFVPup9uLhnOSKNzXhEfBoVdATm91:yXU71FtXvPup9ktbKsfyVGc

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
beea49f17f7fec2d7df6fa68dd53cbfa

Files

beea49f17f7fec2d7df6fa68dd53cbfa
.exe windows:4 windows x86 arch:x86

449d2ddd1f115804d221479a72697763

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

MulDiv
WriteConsoleW
GetVersion
ExitProcess
CreateFileA
TlsSetValue
SetLastError
LoadResource
LCMapStringA
TerminateProcess
GetFileType
GetOEMCP
GlobalLock
HeapReAlloc
GetSystemTimeAsFileTime
CompareStringA
GetStartupInfoA
SetUnhandledExceptionFilter
GetModuleHandleA
SetFilePointer
CreateThread
CompareStringW
GetProcAddress
GetCommandLineA
HeapSize
LockResource
GetConsoleMode
GetEnvironmentStrings
GetCurrentProcess
GetStdHandle
lstrlenW
GetFileAttributesW
GetTickCount
HeapDestroy
QueryPerformanceCounter
SetEvent
LoadLibraryA
GetConsoleCP
GlobalFree
GetFileAttributesA
lstrlenA
SetHandleCount
GetConsoleOutputCP
EnterCriticalSection
FindClose
GetLastError
VirtualAlloc
HeapAlloc
UnhandledExceptionFilter
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
GetCurrentThreadId
TlsAlloc
TlsGetValue
GetEnvironmentVariableA
GetVersionExA
HeapCreate
VirtualFree
HeapFree
RtlUnwind
WriteFile
InterlockedDecrement
InterlockedIncrement
InitializeCriticalSection
LeaveCriticalSection
GetCPInfo
GetACP
MultiByteToWideChar
GetStringTypeA
GetStringTypeW
LCMapStringW

user32

CallWindowProcA
CheckMenuItem
ReleaseDC
GetKeyState
GetDC
MessageBoxA
GetWindowRect
ShowWindow
EndDialog
GetMessageA

Sections

.text
Size: 32KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 404KB - Virtual size: 402KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

449d2ddd1f115804d221479a72697763

Headers

File Characteristics

Imports

kernel32

user32

Sections

.text Size: 32KB - Virtual size: 28KB

.data Size: 404KB - Virtual size: 402KB

.text
Size: 32KB - Virtual size: 28KB

.data
Size: 404KB - Virtual size: 402KB