4c8801b9c9aa1d142d9fd52f128e2be25a198873f92235c6e19e6e90e761559d

General

Target

4c8801b9c9aa1d142d9fd52f128e2be25a198873f92235c6e19e6e90e761559d
Size

747KB
MD5

a379dee754d6f91f9f259466771af1ee
SHA1

964aa31edbf564846a369abf32daba3c48cffe06
SHA256

4c8801b9c9aa1d142d9fd52f128e2be25a198873f92235c6e19e6e90e761559d
SHA512

2ed724dcf81b95ceadb88da69a92a068af14e3bf6f51ea0c1d44c30d768f564800f019987a7a0e16408569626ab63d013fee8b38c354425a9c04bd91b7b9e50a
SSDEEP

12288:u8qd1WK8wpcQfTV4v15jJgC4xpob4iQZe/IDQbmk1j6C7KSNBhoJpZEApwzZo:u8qd1WK8wpcQfTV4vjqC4x8/IDtYjz78

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4c8801b9c9aa1d142d9fd52f128e2be25a198873f92235c6e19e6e90e761559d

Files

4c8801b9c9aa1d142d9fd52f128e2be25a198873f92235c6e19e6e90e761559d
.exe windows:4 windows x86 arch:x86

07442fb0a43c8ba361d775d94499d01a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

ExitProcess
FreeLibrary
GetProcAddress
LoadLibraryA
QueryPerformanceCounter
QueryPerformanceFrequency
SetUnhandledExceptionFilter
Sleep

msvcrt

_putch
_stricmp
_strnicmp
_unlink
__getmainargs
__p__environ
__set_app_type
_cexit
_fileno
_findclose
_findfirst
_findnext
_fmode
_fpreset
_getch
_iob
_kbhit
_mkdir
_setjmp
_setmode
_snprintf
_vsnprintf
atan
atan2
atexit
atof
atoi
ceil
exit
exp
fclose
feof
fflush
fgets
floor
fopen
fprintf
fread
free
fseek
ftell
fwrite
localtime
log
longjmp
malloc
memcpy
memmove
memset
pow
printf
rand
signal
sprintf
srand
sscanf
strcat
strchr
strcmp
strcpy
strftime
strncmp
strncpy
strrchr
strstr
tan
time
tolower
vfprintf
vsprintf

winmm

timeBeginPeriod
timeGetTime

wsock32

WSACleanup
WSAGetLastError
WSAStartup
bind
closesocket
gethostbyname
htons
ioctlsocket
ntohs
recvfrom
sendto
socket

Sections

.text
Size: 706KB - Virtual size: 706KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 37KB - Virtual size: 37KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: - Virtual size: 45.4MB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

07442fb0a43c8ba361d775d94499d01a

Headers

File Characteristics

Imports

kernel32

msvcrt

winmm

wsock32

Sections

.text Size: 706KB - Virtual size: 706KB

.data Size: 37KB - Virtual size: 37KB

.bss Size: - Virtual size: 45.4MB

.idata Size: 2KB - Virtual size: 2KB

.text
Size: 706KB - Virtual size: 706KB

.data
Size: 37KB - Virtual size: 37KB

.bss
Size: - Virtual size: 45.4MB

.idata
Size: 2KB - Virtual size: 2KB