4141739f531493743a55525f45cb8700964b3a7c430aedc87fcd3e11f74e8ad7[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

4141739f531493743a55525f45cb8700964b3a7c430aedc87fcd3e11f74e8ad7.exe
Size

46KB
MD5

a62d1a81323494b0b127d2dcaec47964
SHA1

8d401bf06de218115205647636f8fd45eeac0394
SHA256

4141739f531493743a55525f45cb8700964b3a7c430aedc87fcd3e11f74e8ad7
SHA512

a095ab46499fbaf14afb96c377322b0e7b00029294bc3b5a096e1a887cf06a867132d58754586938265a229fbe563dadee84d8675bd59b01ff4434f0e272ed9a
SSDEEP

768:bfnCh6Xt8wI5viy6NpzjWDMEGNIYdG5dsaHsKptFpEKQyDW8OEhym5bR/ggETJ:bvChUODuyMNI0G5dsas6HWlyy2H5bR/w

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4141739f531493743a55525f45cb8700964b3a7c430aedc87fcd3e11f74e8ad7.exe

Files

4141739f531493743a55525f45cb8700964b3a7c430aedc87fcd3e11f74e8ad7.exe
.exe windows:5 windows x64 arch:x64

8237c2afc551c8dfc3ef283fb602c5d8

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

C:\Users\Test\Documents\Visual Studio 2008\Projects\mubsbsx\x64\Release\mubsbsx.pdb

Imports

kernel32

HeapCreate
GetProcAddress
HeapAlloc
FreeConsole
LoadLibraryA
GetCommandLineA
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
RtlVirtualUnwind
RtlLookupFunctionEntry
RtlCaptureContext
RaiseException
RtlPcToFileHeader
GetModuleHandleW
Sleep
ExitProcess
WriteFile
GetStdHandle
GetModuleFileNameA
RtlUnwindEx
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetLastError
GetEnvironmentStringsW
SetHandleCount
GetFileType
GetStartupInfoA
DeleteCriticalSection
EncodePointer
DecodePointer
FlsGetValue
FlsSetValue
FlsFree
SetLastError
GetCurrentThreadId
FlsAlloc
HeapSetInformation
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
HeapFree
HeapSize
LeaveCriticalSection
EnterCriticalSection
InitializeCriticalSectionAndSpinCount
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
HeapReAlloc
GetLocaleInfoA
LCMapStringA
MultiByteToWideChar
LCMapStringW
GetStringTypeA
GetStringTypeW

user32

GetDC

gdi32

EnumObjects

Sections

.text
Size: 25KB - Virtual size: 24KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 868B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8237c2afc551c8dfc3ef283fb602c5d8

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

kernel32

user32

gdi32

Sections

.text Size: 25KB - Virtual size: 24KB

.rdata Size: 11KB - Virtual size: 11KB

.data Size: 4KB - Virtual size: 8KB

.pdata Size: 1KB - Virtual size: 1KB

.rsrc Size: 2KB - Virtual size: 1KB

.reloc Size: 1024B - Virtual size: 868B

.text
Size: 25KB - Virtual size: 24KB

.rdata
Size: 11KB - Virtual size: 11KB

.data
Size: 4KB - Virtual size: 8KB

.pdata
Size: 1KB - Virtual size: 1KB

.rsrc
Size: 2KB - Virtual size: 1KB

.reloc
Size: 1024B - Virtual size: 868B