d36aa5143336f142901e1324444ea3d2

General

Target

d36aa5143336f142901e1324444ea3d2
Size

34KB
MD5

d36aa5143336f142901e1324444ea3d2
SHA1

0a51f4e2d311943493d136094b309f59cf009306
SHA256

7b9e71c9afbcd6034dd8b7d240ed41e87062b1cec8daa7d05349ae40b3baaa80
SHA512

a375c067aad7d7998649bb2d216b823fd2ad2c457e9e829efde910de2ee1fe7d958ffc72aed9e150dcd9f8519cb65656ada3cb6c05b94907c2447d272065075f
SSDEEP

768:CxfEhVPWx+1894xEBoREWadxVQE9NvG3gC4Lpeaq9J2q2/D59o8:fzPW39Qq7dxVQELGwT1eiqwlq8

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d36aa5143336f142901e1324444ea3d2

Files

d36aa5143336f142901e1324444ea3d2
.exe windows:45942 windows x86 arch:x86

8c52bada7e0bedbe0770c38d00369af7

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

WideCharToMultiByte
GetModuleHandleA
GetLastError
GetLastError
CreateThread
GetModuleHandleW
GetCommandLineA
LeaveCriticalSection
SetFilePointer
WideCharToMultiByte
WaitForSingleObject
CreateFileW
HeapFree
LeaveCriticalSection
UnhandledExceptionFilter
GetSystemTimeAsFileTime
QueryPerformanceCounter
HeapAlloc
HeapAlloc
GetCommandLineA
SetLastError
GetLastError
TerminateProcess
VirtualAlloc
SetFilePointer
HeapAlloc
CreateThread
VirtualAlloc
LoadLibraryA
GetModuleHandleA
CreateThread
VirtualAlloc
InterlockedDecrement
GetStartupInfoW
lstrcmpiW
HeapFree
InitializeCriticalSection
MultiByteToWideChar
GetCurrentProcess
HeapDestroy

user32

DestroyMenu
CharNextW
EnableWindow
wsprintfW
MessageBoxA
SetForegroundWindow
EndPaint
LoadStringW
LoadCursorW
InvalidateRect
GetMenu
SendMessageA
DispatchMessageA
wsprintfW
GetSubMenu
TranslateMessage
SetForegroundWindow
BeginPaint
GetMessageW
GetDlgCtrlID
DrawTextW
WinHelpW
EndPaint
CopyRect
SendDlgItemMessageW
GetSystemMenu
GetDlgItemTextW
GetMessageW
GetSystemMenu
CopyRect
SetCapture
LoadImageW
GetWindowLongW
GetFocus
SetDlgItemTextW
TranslateMessage
GetDesktopWindow
SendDlgItemMessageW

Sections

.text
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 13KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 5KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8c52bada7e0bedbe0770c38d00369af7

Headers

File Characteristics

Imports

kernel32

user32

Sections

.text Size: 12KB - Virtual size: 12KB

.data Size: 13KB - Virtual size: 48KB

.rdata Size: 2KB - Virtual size: 4KB

.rsrc Size: 5KB - Virtual size: 8KB

.text
Size: 12KB - Virtual size: 12KB

.data
Size: 13KB - Virtual size: 48KB

.rdata
Size: 2KB - Virtual size: 4KB

.rsrc
Size: 5KB - Virtual size: 8KB