c8af155db3a3c05aee5a421ab68cf20f

General

Target

c8af155db3a3c05aee5a421ab68cf20f
Size

3.4MB
MD5

c8af155db3a3c05aee5a421ab68cf20f
SHA1

3896f447b3dca857643b8d6c1594003e5d7d8cce
SHA256

2efca6c1eb3f52f0f77087d2d9a9b1fc4c7a479b01e5c9c46272157b2c8f54ce
SHA512

39bb831df88239238b76e36aa743d867bbde89f871158f890e8cf4aff2025d9603cf7550c38894f09facc838e25a786f0c5c12073777dce8d7f4c219e992dbbb
SSDEEP

98304:9nRsImsgZGN7Incgz0AsAv6uJo5u+RR/l9v/:EnOcncO08vm5bR/lV/

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c8af155db3a3c05aee5a421ab68cf20f

Files

c8af155db3a3c05aee5a421ab68cf20f
.exe windows:4 windows x86 arch:x86

e743fd5418a82a59436851ba99a046d2

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLastError
GetSystemTimeAsFileTime
SetUnhandledExceptionFilter
QueryPerformanceCounter
GetProcAddress
TerminateProcess
FreeLibrary
MultiByteToWideChar
WriteFile
CreateFileW
ExitProcess
GetStdHandle
GetStartupInfoW
IsDebuggerPresent
GetCommandLineW
FindClose
ReadFile
SetEvent
FormatMessageW
GetFileType
TlsGetValue
GetModuleHandleA
HeapReAlloc
TlsSetValue
TlsAlloc
HeapSetInformation
LoadLibraryW
LoadLibraryExW
SetFilePointer
GetFileAttributesW
LCMapStringW
SetStdHandle
FreeEnvironmentStringsW
IsProcessorFeaturePresent
FindFirstFileW
DeleteFileW
GetConsoleCP
LocalAlloc
GetCommandLineA
GetVersionExW
CreateFileA
OutputDebugStringW
EncodePointer
GetModuleHandleExW
GetLocaleInfoW
LoadResource
GetExitCodeProcess
CreateProcessW

user32

LoadStringW
DispatchMessageW
ShowWindow
PostQuitMessage
SetWindowLongW
GetDlgItem
GetSystemMetrics
GetWindowRect
SendMessageW
GetClientRect
EnableWindow
PeekMessageW
ScreenToClient
SetCursor
InvalidateRect
RegisterClassW
EnableMenuItem
GetWindowTextW
UpdateWindow

Sections

.idata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 3.4MB - Virtual size: 3.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 612KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e743fd5418a82a59436851ba99a046d2

Headers

File Characteristics

Imports

kernel32

user32

Sections

.idata Size: 2KB - Virtual size: 1KB

.rdata Size: 3.4MB - Virtual size: 3.4MB

.data Size: - Virtual size: 612KB

.text Size: 6KB - Virtual size: 6KB

.idata
Size: 2KB - Virtual size: 1KB

.rdata
Size: 3.4MB - Virtual size: 3.4MB

.data
Size: - Virtual size: 612KB

.text
Size: 6KB - Virtual size: 6KB