252c5abfb94c1153e2be51d9d87dc21d307e25746fa7381eed2a15551b16c1ae

Sharing

Copy URL Twitter E-mail

General

Target

252c5abfb94c1153e2be51d9d87dc21d307e25746fa7381eed2a15551b16c1ae
Size

39KB
MD5

48625b07cc0b80c3338073ddc9af9390
SHA1

aa0222180f3350cfe42e499e6506a619166744d0
SHA256

252c5abfb94c1153e2be51d9d87dc21d307e25746fa7381eed2a15551b16c1ae
SHA512

ed95854173605437a2c9aae207ae5140c963d778f3243ed51c002172da6ec8b96e069813a17eb7ab88cef68b353e281c760e815e2ef0a516aa0cfa156a4facd2
SSDEEP

768:yvTxCxmZo24HvgntksJqAABHsBC0MBhdnPbv60r5q9E:2CukswAzBC08600i

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
252c5abfb94c1153e2be51d9d87dc21d307e25746fa7381eed2a15551b16c1ae

Files

252c5abfb94c1153e2be51d9d87dc21d307e25746fa7381eed2a15551b16c1ae
.dll windows:1 windows x86 arch:x86

adaf956fbd25776960584502bcc88f5f

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetStdHandle
GetEnvironmentStrings
FreeEnvironmentStringsA
TlsAlloc
TlsFree
TlsSetValue
TlsGetValue
GetFileType
CreateFileA
ReadFile
GetLastError
ExitProcess
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
CloseHandle
SetFilePointer
DeleteFileA
WriteFile
GlobalAlloc
GlobalFree

user32

MessageBoxA

Exports

Exports

main

Sections

.text
Size: 24KB - Virtual size: 23KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.exc
Size: 512B - Virtual size: 396B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1024B - Virtual size: 672B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 512B - Virtual size: 8B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 512B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 72B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

adaf956fbd25776960584502bcc88f5f

Headers

File Characteristics

Imports

kernel32

user32

Exports

Exports

Sections

.text Size: 24KB - Virtual size: 23KB

.bss Size: - Virtual size: 2KB

.exc Size: 512B - Virtual size: 396B

.data Size: 7KB - Virtual size: 7KB

.rsrc Size: 2KB - Virtual size: 1KB

.idata Size: 1024B - Virtual size: 672B

.CRT Size: 512B - Virtual size: 8B

.tls Size: 512B - Virtual size: 512B

.edata Size: 512B - Virtual size: 72B

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 24KB - Virtual size: 23KB

.bss
Size: - Virtual size: 2KB

.exc
Size: 512B - Virtual size: 396B

.data
Size: 7KB - Virtual size: 7KB

.rsrc
Size: 2KB - Virtual size: 1KB

.idata
Size: 1024B - Virtual size: 672B

.CRT
Size: 512B - Virtual size: 8B

.tls
Size: 512B - Virtual size: 512B

.edata
Size: 512B - Virtual size: 72B

.reloc
Size: 2KB - Virtual size: 1KB