052a8c163a59be6da9e440dc3cd8ac94ce60564616c6f8c4b8c7d576445f5e75

Sharing

Copy URL Twitter E-mail

General

Target

052a8c163a59be6da9e440dc3cd8ac94ce60564616c6f8c4b8c7d576445f5e75
Size

5.5MB
MD5

c802cf8681bb8d7cad79a9ecea649168
SHA1

fe40a9449e5046adadd0ad0facd657af93ef2c59
SHA256

052a8c163a59be6da9e440dc3cd8ac94ce60564616c6f8c4b8c7d576445f5e75
SHA512

1ffc9ba87fc241d33aca10b138135304295a169372a9698de0b1d680d2dc537cc420ef5a30be273899574718b3c5c75b913166fd78111550dbb4b6c77097d358
SSDEEP

98304:h4UVKVxFdMzh3GOOgudKE4fQL1pEeM3Tw8yb3nHCxdPRJEedT/wUnwOZvL0:h4OYoh3GHdL4fQZpEeMD9yb3Id3wUnxA

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
052a8c163a59be6da9e440dc3cd8ac94ce60564616c6f8c4b8c7d576445f5e75

Files

052a8c163a59be6da9e440dc3cd8ac94ce60564616c6f8c4b8c7d576445f5e75
.exe windows:4 windows x86 arch:x86

33e5507b608d44d4ef786a0e7afb121f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLastError
LoadLibraryA
GetProcAddress
SetLastError
ResumeThread
Sleep
LCMapStringA
GetStringTypeW
GetStringTypeA
MultiByteToWideChar
GetOEMCP
RtlUnwind
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetVersion
ExitProcess
CloseHandle
WriteFile
ReadFile
SetFilePointer
SetHandleCount
GetStdHandle
GetFileType
CreateFileA
TerminateProcess
GetCurrentProcess
HeapFree
UnhandledExceptionFilter
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
HeapDestroy
HeapCreate
VirtualFree
HeapAlloc
SetStdHandle
SetEndOfFile
FlushFileBuffers
VirtualAlloc
HeapReAlloc
IsBadWritePtr
SetUnhandledExceptionFilter
IsBadReadPtr
IsBadCodePtr
GetCPInfo
GetACP
LCMapStringW

Sections

.text
Size: 56KB - Virtual size: 55KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2.7MB - Virtual size: 66.8MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

LAMBDA
Size: 4KB - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ZXCV0
Size: 4KB - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ZXCVA
Size: 4KB - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ZXCVZ
Size: 4KB - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ZXCVY
Size: 4KB - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ZXCV30
Size: 4KB - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ZXCV31
Size: 4KB - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ZXCV32
Size: 4KB - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ZXCV33
Size: 4KB - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ZXCV34
Size: 4KB - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ZXCV35
Size: 4KB - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ZXCV36
Size: 4KB - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ZXCV37
Size: 4KB - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ZXCV38
Size: 4KB - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ZXCV39
Size: 4KB - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ZXCV40
Size: 4KB - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ZXCV41
Size: 4KB - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ZXCV42
Size: 4KB - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ZXCV43
Size: 4KB - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ZXCV44
Size: 4KB - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ZXCV45
Size: 4KB - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ZXCV46
Size: 4KB - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ZXCV47
Size: 4KB - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ZXCV48
Size: 4KB - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ZXCV49
Size: 4KB - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ZXCV50
Size: 4KB - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ZXCV51
Size: 4KB - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ZXCV52
Size: 4KB - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ZXCV53
Size: 4KB - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ZXCV54
Size: 4KB - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

33e5507b608d44d4ef786a0e7afb121f

Headers

File Characteristics

Imports

kernel32

Sections

.text Size: 56KB - Virtual size: 55KB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 2.7MB - Virtual size: 66.8MB

LAMBDA Size: 4KB - Virtual size: 4B

ZXCV0 Size: 4KB - Virtual size: 4B

ZXCVA Size: 4KB - Virtual size: 4B

ZXCVZ Size: 4KB - Virtual size: 4B

ZXCVY Size: 4KB - Virtual size: 4B

ZXCV30 Size: 4KB - Virtual size: 4B

ZXCV31 Size: 4KB - Virtual size: 4B

ZXCV32 Size: 4KB - Virtual size: 4B

ZXCV33 Size: 4KB - Virtual size: 4B

ZXCV34 Size: 4KB - Virtual size: 4B

ZXCV35 Size: 4KB - Virtual size: 4B

ZXCV36 Size: 4KB - Virtual size: 4B

ZXCV37 Size: 4KB - Virtual size: 4B

ZXCV38 Size: 4KB - Virtual size: 4B

ZXCV39 Size: 4KB - Virtual size: 4B

ZXCV40 Size: 4KB - Virtual size: 4B

ZXCV41 Size: 4KB - Virtual size: 4B

ZXCV42 Size: 4KB - Virtual size: 4B

ZXCV43 Size: 4KB - Virtual size: 4B

ZXCV44 Size: 4KB - Virtual size: 4B

ZXCV45 Size: 4KB - Virtual size: 4B

ZXCV46 Size: 4KB - Virtual size: 4B

ZXCV47 Size: 4KB - Virtual size: 4B

ZXCV48 Size: 4KB - Virtual size: 4B

ZXCV49 Size: 4KB - Virtual size: 4B

ZXCV50 Size: 4KB - Virtual size: 4B

ZXCV51 Size: 4KB - Virtual size: 4B

ZXCV52 Size: 4KB - Virtual size: 4B

ZXCV53 Size: 4KB - Virtual size: 4B

ZXCV54 Size: 4KB - Virtual size: 4B

.rsrc Size: 8KB - Virtual size: 4KB

.text
Size: 56KB - Virtual size: 55KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 2.7MB - Virtual size: 66.8MB

LAMBDA
Size: 4KB - Virtual size: 4B

ZXCV0
Size: 4KB - Virtual size: 4B

ZXCVA
Size: 4KB - Virtual size: 4B

ZXCVZ
Size: 4KB - Virtual size: 4B

ZXCVY
Size: 4KB - Virtual size: 4B

ZXCV30
Size: 4KB - Virtual size: 4B

ZXCV31
Size: 4KB - Virtual size: 4B

ZXCV32
Size: 4KB - Virtual size: 4B

ZXCV33
Size: 4KB - Virtual size: 4B

ZXCV34
Size: 4KB - Virtual size: 4B

ZXCV35
Size: 4KB - Virtual size: 4B

ZXCV36
Size: 4KB - Virtual size: 4B

ZXCV37
Size: 4KB - Virtual size: 4B

ZXCV38
Size: 4KB - Virtual size: 4B

ZXCV39
Size: 4KB - Virtual size: 4B

ZXCV40
Size: 4KB - Virtual size: 4B

ZXCV41
Size: 4KB - Virtual size: 4B

ZXCV42
Size: 4KB - Virtual size: 4B

ZXCV43
Size: 4KB - Virtual size: 4B

ZXCV44
Size: 4KB - Virtual size: 4B

ZXCV45
Size: 4KB - Virtual size: 4B

ZXCV46
Size: 4KB - Virtual size: 4B

ZXCV47
Size: 4KB - Virtual size: 4B

ZXCV48
Size: 4KB - Virtual size: 4B

ZXCV49
Size: 4KB - Virtual size: 4B

ZXCV50
Size: 4KB - Virtual size: 4B

ZXCV51
Size: 4KB - Virtual size: 4B

ZXCV52
Size: 4KB - Virtual size: 4B

ZXCV53
Size: 4KB - Virtual size: 4B

ZXCV54
Size: 4KB - Virtual size: 4B

.rsrc
Size: 8KB - Virtual size: 4KB