cd34a67cb176ed235a4fd14d83932a2f

General

Target

cd34a67cb176ed235a4fd14d83932a2f
Size

392KB
MD5

cd34a67cb176ed235a4fd14d83932a2f
SHA1

2f1f807d55a0c5ba6dadf50560f9eb8d35f1792d
SHA256

eeb49e5b19a3cd65512260ff55871f472e608be2fc82bf8d8a7554a2ac36a2cb
SHA512

b80f15b5c909a64dda6bf2840436eca874c4b485906bbeaddc097863696fe8f9e77121b5679ee57e6107f6636592e6b930cdbbea5881bc222edb029c7029b8dd
SSDEEP

6144:SzfZoR436UuIoAiNYaiP9WygPG7wA9hywjRqPDckxyIBIL//sZzTxwmh:Cxp9hj1WyL7wA9hywVqPgkxywSOztwm

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
cd34a67cb176ed235a4fd14d83932a2f

Files

cd34a67cb176ed235a4fd14d83932a2f
.exe windows:4 windows x86 arch:x86

54924169d28d652a5a7e114cdd6d7b16

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

LoadMenuA

kernel32

HeapCreate
VirtualAlloc
GetModuleHandleA
GetProcAddress
LoadLibraryA
VirtualFree
WaitForSingleObject
CreateThread
GetCommandLineA
HeapFree
GetVersionExA
HeapAlloc
GetProcessHeap
GetStartupInfoA
GetLastError
RaiseException
SetUnhandledExceptionFilter
ExitProcess
WriteFile
GetStdHandle
GetModuleFileNameA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
SetHandleCount
GetFileType
DeleteCriticalSection
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
GetCurrentThreadId
InterlockedDecrement
HeapDestroy
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
LeaveCriticalSection
EnterCriticalSection
HeapReAlloc
Sleep
HeapSize
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
IsDebuggerPresent
InitializeCriticalSection
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
RtlUnwind
MultiByteToWideChar
GetLocaleInfoA
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW

Sections

.text
Size: 32KB - Virtual size: 31KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 328KB - Virtual size: 325KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

54924169d28d652a5a7e114cdd6d7b16

Headers

File Characteristics

Imports

user32

kernel32

Sections

.text Size: 32KB - Virtual size: 31KB

.rdata Size: 12KB - Virtual size: 9KB

.data Size: 8KB - Virtual size: 8KB

.rsrc Size: 328KB - Virtual size: 325KB

.reloc Size: 8KB - Virtual size: 4KB

.text
Size: 32KB - Virtual size: 31KB

.rdata
Size: 12KB - Virtual size: 9KB

.data
Size: 8KB - Virtual size: 8KB

.rsrc
Size: 328KB - Virtual size: 325KB

.reloc
Size: 8KB - Virtual size: 4KB