46cc4d6666c17d05f8bb1612e0f161e74dd72403e0e6e62c1eb8d2780a015e43

Sharing

Copy URL Twitter E-mail

General

Target

46cc4d6666c17d05f8bb1612e0f161e74dd72403e0e6e62c1eb8d2780a015e43
Size

20KB
MD5

a9564e87bcb1e18ec85ea86cc99c260e
SHA1

1fc5353339fb651546288ee868ab14fca8b56881
SHA256

46cc4d6666c17d05f8bb1612e0f161e74dd72403e0e6e62c1eb8d2780a015e43
SHA512

6b2aca5845d80b7d5f5a4395ff923da6a09c8ec2b8688104f9c25732fe9e3389cffd64e2a4521744c6d05c0c26cf4307bf336367b5c5ce9f6b6afcc8734f2c24
SSDEEP

384:I2ZQ8RGHMZ3MA4ZQxxhsqsYIEhAjrGNh4UV7vwu7o:I2uLMZ3MA5rUYZhQr8g

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
46cc4d6666c17d05f8bb1612e0f161e74dd72403e0e6e62c1eb8d2780a015e43

Files

46cc4d6666c17d05f8bb1612e0f161e74dd72403e0e6e62c1eb8d2780a015e43
.dll windows:4 windows x86 arch:x86

96c0124f1bf58bd60ea5d12d23f59e37

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_DLL

Imports

kernel32

DisableThreadLibraryCalls
GetModuleHandleA
GetProcAddress
GetTickCount
HeapAlloc
HeapFree
HeapReAlloc
RaiseException
Sleep
DeleteCriticalSection
EnterCriticalSection
GetLastError
InitializeCriticalSection
LeaveCriticalSection
TlsGetValue
VirtualProtect
VirtualQuery

msvcrt

_amsg_exit
_initterm
_lock
_unlock
_vsnprintf
__p__iob
_iob
_strdup
abort
calloc
fputs
free
fwrite
getenv
strncmp
vfprintf

ntdll

_snprintf
memcmp
memmove
sprintf
strchr
strcmp
strcpy
strcspn
strlen

user32

SetCursorPos

Exports

Exports

__wine_spec_dos_header

Sections

.text
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rodata
Size: 1024B - Virtual size: 528B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 1024B - Virtual size: 952B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 288B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 512B - Virtual size: 44B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 8B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 900B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

96c0124f1bf58bd60ea5d12d23f59e37

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

msvcrt

ntdll

user32

Exports

Exports

Sections

.text Size: 8KB - Virtual size: 8KB

.data Size: 3KB - Virtual size: 2KB

.rodata Size: 1024B - Virtual size: 528B

.rdata Size: 1024B - Virtual size: 952B

.bss Size: - Virtual size: 288B

.edata Size: 2KB - Virtual size: 1KB

.idata Size: 1KB - Virtual size: 1KB

.CRT Size: 512B - Virtual size: 44B

.tls Size: 512B - Virtual size: 8B

.reloc Size: 1024B - Virtual size: 900B

.text
Size: 8KB - Virtual size: 8KB

.data
Size: 3KB - Virtual size: 2KB

.rodata
Size: 1024B - Virtual size: 528B

.rdata
Size: 1024B - Virtual size: 952B

.bss
Size: - Virtual size: 288B

.edata
Size: 2KB - Virtual size: 1KB

.idata
Size: 1KB - Virtual size: 1KB

.CRT
Size: 512B - Virtual size: 44B

.tls
Size: 512B - Virtual size: 8B

.reloc
Size: 1024B - Virtual size: 900B