beeb2efc810c7ede309a43925831f595

General

Target

beeb2efc810c7ede309a43925831f595
Size

840KB
MD5

beeb2efc810c7ede309a43925831f595
SHA1

0b753f2f819b698d70bed267e22ef93dac0b7c61
SHA256

3a1da3b306e1e914aad3e13a7c9ea8f9334d0ace2fd78940c9dd15080e2bc595
SHA512

003d6a2e544d1d99fdcd85a64065826bb6400426b6b57f5278fd3bccfa3e2f5d776a00e3c9c890bf9eefe5e155796d3b97dbc065d9130dada2ea01045a5d40dc
SSDEEP

12288:9b6pNUWs60C4o2b5uvN2aDz7ZA0Y9IWXEEEEEEEEUE:9bIyWIFmT3mFEEEEEEEEUE

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
beeb2efc810c7ede309a43925831f595

Files

beeb2efc810c7ede309a43925831f595
.exe windows:5 windows x86 arch:x86

93ffdaf67a2cde36bbfbdfb51943bb0c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

LoadIconA
LoadCursorA
RegisterClassExA
CreateWindowExA
SetTimer
GetMessageA
TranslateMessage
DispatchMessageA
UpdateWindow
DefWindowProcA
KillTimer
PostQuitMessage

kernel32

LoadLibraryA
LCMapStringW
LCMapStringA
LeaveCriticalSection
SetLastError
GetCurrentProcessId
InterlockedIncrement
GetCurrentThreadId
GetTickCount
TlsSetValue
GetFileType
HeapDestroy
FindResourceW
LoadResource
InitializeCriticalSection
WriteConsoleA
LocalFree
GetFullPathNameA
HeapReAlloc
GetSystemTimeAsFileTime
GetCurrentProcess
WriteFile
InterlockedExchange
ReadFile
GetModuleHandleA
TlsFree
GetModuleFileNameW
GetCPInfo
lstrcmpiA
RaiseException
SetFilePointer
SetStdHandle
GetProcAddress
GetCommandLineA
FreeEnvironmentStringsW
UnhandledExceptionFilter
LockResource
GetFileSize
GetLocaleInfoA
GetStartupInfoA
GetModuleFileNameA
HeapAlloc
LocalAlloc
SetEvent
WaitForSingleObject
LoadLibraryW
EnterCriticalSection
GetProcessHeap
VirtualAlloc
GetVersion
ExitProcess
TerminateProcess
FreeEnvironmentStringsA
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
TlsAlloc
TlsGetValue
GetLastError
GetEnvironmentVariableA
GetVersionExA
HeapCreate
VirtualFree
HeapFree
RtlUnwind
InterlockedDecrement
GetACP
GetOEMCP
MultiByteToWideChar
GetStringTypeA
GetStringTypeW

Sections

.text
Size: 48KB - Virtual size: 45KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 780KB - Virtual size: 781KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

93ffdaf67a2cde36bbfbdfb51943bb0c

Headers

File Characteristics

Imports

user32

kernel32

Sections

.text Size: 48KB - Virtual size: 45KB

.rdata Size: 8KB - Virtual size: 4KB

.data Size: 780KB - Virtual size: 781KB

.text
Size: 48KB - Virtual size: 45KB

.rdata
Size: 8KB - Virtual size: 4KB

.data
Size: 780KB - Virtual size: 781KB