927f84a0c7bfa22c069a0a8b40db7930N[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

927f84a0c7bfa22c069a0a8b40db7930N.exe
Size

437KB
MD5

927f84a0c7bfa22c069a0a8b40db7930
SHA1

d2c6c2ef057e45f17fddc91eca11dca4d6a313e3
SHA256

4713b5af8cd51ae48f5fab8388190658005c944c64e373b8e4957be232b4b173
SHA512

421c5214e26bcb9113d490f05c40ce1b359f7142e48d1828bb241057f03f923c511b99ccac18fe52d848d4ad449aa292ef42948d5e212b17af6b2185e960dac3
SSDEEP

12288:PLwFEhuGYqBFUGupjg3E/V88ffEnx9Qbar:bYqjUGP3E/V80Cr

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
927f84a0c7bfa22c069a0a8b40db7930N.exe

Files

927f84a0c7bfa22c069a0a8b40db7930N.exe
.exe windows:4 windows x86 arch:x86

162d877880c51f0f3b6a05b063d735b3

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLocaleInfoW
GetStringTypeA
WriteFile
IsValidLocale
GetProcAddress
GetTimeZoneInformation
HeapReAlloc
LCMapStringW
DeleteCriticalSection
GetLastError
GetCurrentProcessId
LoadLibraryW
FindResourceW
GetCommandLineW
MultiByteToWideChar
SetEnvironmentVariableA
WriteConsoleA
GetMailslotInfo
OutputDebugStringA
SetFilePointer
TlsSetValue
RaiseException
EnumSystemLocalesA
GetProcessHeap
HeapDestroy
GetThreadPriority
GetEnvironmentStringsW
LocalSize
TlsFree
ExitProcess
GetTickCount
GetProfileIntA
LeaveCriticalSection
HeapFree
FreeLibrary
GetModuleFileNameA
GetModuleFileNameW
LoadLibraryA
QueryPerformanceCounter
VirtualFree
VirtualAlloc
ConvertDefaultLocale
EnterCriticalSection
SetConsoleCtrlHandler
GetCurrentProcess
TerminateProcess
GetCurrentThreadId
SetStdHandle
GetACP
GetConsoleCP
GetDateFormatA
IsBadReadPtr
OutputDebugStringW
GetStringTypeW
FlushFileBuffers
GetSystemTimeAsFileTime
GetCPInfo
CompareStringW
HeapCreate
GetCommandLineA
GetConsoleMode
CompareStringA
IsValidCodePage
HeapValidate
SetLastError
CloseHandle
GetCurrentThread
IsDebuggerPresent
SetUnhandledExceptionFilter
GetStdHandle
LCMapStringA
GetEnvironmentStrings
EnumResourceTypesA
InterlockedExchange
GetLocaleInfoA
SetHandleCount
WideCharToMultiByte
InitializeCriticalSection
DebugBreak
CreateFileA
GetVersionExA
GetStartupInfoW
HeapAlloc
InterlockedIncrement
GetTempFileNameA
RtlZeroMemory
GetStartupInfoA
WriteConsoleW
GetModuleHandleA
InterlockedDecrement
GetFileType
GetOEMCP
lstrlenA
UnhandledExceptionFilter
TlsAlloc
GetDiskFreeSpaceA
GetTimeFormatA
GetConsoleOutputCP
SetWaitableTimer
FreeEnvironmentStringsW
FreeEnvironmentStringsA
GetUserDefaultLCID
VirtualQuery
TlsGetValue
RtlUnwind

comdlg32

PrintDlgW
GetOpenFileNameA
FindTextW
GetOpenFileNameW
ChooseColorW
GetSaveFileNameA
LoadAlterBitmap
PageSetupDlgA
ReplaceTextA
ChooseFontW

Sections

.text
Size: 272KB - Virtual size: 271KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 151KB - Virtual size: 150KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

162d877880c51f0f3b6a05b063d735b3

Headers

File Characteristics

Imports

kernel32

comdlg32

Sections

.text Size: 272KB - Virtual size: 271KB

.data Size: 151KB - Virtual size: 150KB

.rsrc Size: 13KB - Virtual size: 12KB

.text
Size: 272KB - Virtual size: 271KB

.data
Size: 151KB - Virtual size: 150KB

.rsrc
Size: 13KB - Virtual size: 12KB