bfc902e2a8df4be529bf84d0970788e8

Sharing

Copy URL Twitter E-mail

General

Target

bfc902e2a8df4be529bf84d0970788e8
Size

124KB
MD5

bfc902e2a8df4be529bf84d0970788e8
SHA1

4ed463c855eb6aed6c9afe7a9d19eb45c1305854
SHA256

54bf59bc52cdef05d14eb87ff8c1d6d90ce4ce43b5b774d067d702bd9820c335
SHA512

a701c366296ecd64ff1a9f2f8ff1a198a0c49a41458379196e2ad8be58eea41fb30dd4da4f35e2a77fbd5cb4baea45ebb0772ff8cf0a1259ba8e966fc0d76eb0
SSDEEP

3072:GduXAftBSJe3kO9iQ75dB2AE1GaOCASQha2gT:l+BSoDiQ9dB2AE1GaO+Qg2gT

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bfc902e2a8df4be529bf84d0970788e8

Files

bfc902e2a8df4be529bf84d0970788e8
.exe windows:4 windows x86 arch:x86

4c8e9873bead524086fcd7db0f6d7591

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

IsDebuggerPresent
GetModuleHandleA
GetProcAddress
VirtualQuery
FatalExit
DebugBreak
GetTickCount

user32

GetActiveWindow
GetWindow
DefWindowProcA
DispatchMessageA
TranslateMessage
GetMessageA
UpdateWindow
ShowWindow
MessageBoxA
CreateWindowExA
LoadCursorA
LoadIconA
FindWindowA

ntdll

_chkstk

Sections

.text
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 72KB - Virtual size: 98KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pma6
Size: 4KB - Virtual size: 31B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pma5
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pma4
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pma3
Size: 4KB - Virtual size: 41B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pma2
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pma1
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pma0
Size: 4KB - Virtual size: 35B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

4c8e9873bead524086fcd7db0f6d7591

Headers

File Characteristics

Imports

kernel32

user32

ntdll

Sections

.text Size: 8KB - Virtual size: 4KB

.rdata Size: 4KB - Virtual size: 1KB

.data Size: 72KB - Virtual size: 98KB

.pma6 Size: 4KB - Virtual size: 31B

.pma5 Size: 8KB - Virtual size: 4KB

.pma4 Size: 4KB - Virtual size: 2KB

.pma3 Size: 4KB - Virtual size: 41B

.pma2 Size: 8KB - Virtual size: 4KB

.pma1 Size: 4KB - Virtual size: 2KB

.pma0 Size: 4KB - Virtual size: 35B

.text
Size: 8KB - Virtual size: 4KB

.rdata
Size: 4KB - Virtual size: 1KB

.data
Size: 72KB - Virtual size: 98KB

.pma6
Size: 4KB - Virtual size: 31B

.pma5
Size: 8KB - Virtual size: 4KB

.pma4
Size: 4KB - Virtual size: 2KB

.pma3
Size: 4KB - Virtual size: 41B

.pma2
Size: 8KB - Virtual size: 4KB

.pma1
Size: 4KB - Virtual size: 2KB

.pma0
Size: 4KB - Virtual size: 35B