d4a0733f4cb92ab5db41561ad8d4b7e8

Sharing

Copy URL Twitter E-mail

General

Target

d4a0733f4cb92ab5db41561ad8d4b7e8
Size

84KB
MD5

d4a0733f4cb92ab5db41561ad8d4b7e8
SHA1

67559f6b1dc94812d5ab039868dfea0e6e2b19e1
SHA256

e19037b0375f929eae4b4980e2860101c8b182e8eea24c4c693423399eb2ae0e
SHA512

57722505d7ab1baea0780f20edc24ce058195739548d2fe4ee749b7c04d32f139a8efed752f01108607905a5960ee0b15cab0229e4c43f26cd715230cbaaeb23
SSDEEP

1536:WuSV1jlIzZJeV7cjf5mplDv9iIOWFnToIfm0zZe9:M1jlIFUqjf5mzv9AWtTBfm0

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d4a0733f4cb92ab5db41561ad8d4b7e8

Files

d4a0733f4cb92ab5db41561ad8d4b7e8
.exe windows:4 windows x86 arch:x86

80d3fcfffd4262a659fa43ca06554895

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleFileNameA
GetStartupInfoA
WinExec
CreateProcessA
FreeResource
WriteFile
SizeofResource
GetCurrentDirectoryA
SetCurrentDirectoryA
DeleteFileA
GetLastError
GetFileSize
ReadFile
CloseHandle
FindResourceA
CreateFileA
SetFilePointer
SetEndOfFile
LoadResource
GlobalLock
GetModuleHandleA

advapi32

RegSetValueExA
RegQueryValueExA
RegCreateKeyExA
RegOpenKeyExA
RegCloseKey

msvcrt

??3@YAXPAX@Z
_onexit
__dllonexit
_controlfp
_except_handler3
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
_acmdln
exit
_XcptFilter
_exit
strncpy
_ftol
memchr
malloc
free
??2@YAPAXI@Z
strcmp
memset
__CxxFrameHandler
strlen

msvcp60

??Hstd@@YA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@ABV10@PBD@Z
?_Eos@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEXI@Z
??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
?_Tidy@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEX_N@Z
?assign@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@ABV12@II@Z
?substr@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBE?AV12@II@Z
?npos@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@2IB
?_C@?1??_Nullstr@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@CAPBDXZ@4DB
?_Freeze@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEXXZ
?replace@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@IIPBDI@Z
?find@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIPBDII@Z
?append@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@PBDI@Z
?find_last_of@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIPBDII@Z
?assign@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@PBDI@Z
?_Grow@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAE_NI_N@Z
?_Xlen@std@@YAXXZ
??1_Lockit@std@@QAE@XZ
?append@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@ABV12@II@Z
??0_Lockit@std@@QAE@XZ

imagehlp

MakeSureDirectoryPathExists

shlwapi

PathFileExistsA

Sections

.text
Size: 44KB - Virtual size: 43KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 20KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

80d3fcfffd4262a659fa43ca06554895

Headers

File Characteristics

Imports

kernel32

advapi32

msvcrt

msvcp60

imagehlp

shlwapi

Sections

.text Size: 44KB - Virtual size: 43KB

.rdata Size: 20KB - Virtual size: 17KB

.data Size: 4KB - Virtual size: 2KB

.text
Size: 44KB - Virtual size: 43KB

.rdata
Size: 20KB - Virtual size: 17KB

.data
Size: 4KB - Virtual size: 2KB