45edd41fd1c124ba20344438b861a4f69864d02768fb96a232429c550994d00b

Sharing

Copy URL Twitter E-mail

General

Target

45edd41fd1c124ba20344438b861a4f69864d02768fb96a232429c550994d00b
Size

1.9MB
MD5

8051a520fe1af01b4c32d63b1b12eb1e
SHA1

d478a5cb1827d5c1d55fa3c96a32a0e9e8903b37
SHA256

45edd41fd1c124ba20344438b861a4f69864d02768fb96a232429c550994d00b
SHA512

af478f66f16bbbca63a2577c88561e76be46f57339efdb0e68c1e9beae7845985e4dff421901b2924e913cb6f8bcd298c7c6c12f94a6e8807d46a1c38ac2550d
SSDEEP

24576:JS/tNb4DkwIIe2I/0HAWOd8T4Xsll0qZR4SVGCYPUCooH8yK4I:6F4jOU4SVG1U4I

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
45edd41fd1c124ba20344438b861a4f69864d02768fb96a232429c550994d00b

Files

45edd41fd1c124ba20344438b861a4f69864d02768fb96a232429c550994d00b
.exe windows:4 windows x64 arch:x64

86d6e7ce2fbdc22b58dbef8d783f761c

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

kernel32

GetModuleHandleA
SetLastError
GetModuleHandleExA
GetProcAddress
LoadLibraryA
VirtualAlloc
VirtualFree
FreeLibrary
HeapAlloc
GetProcessHeap
GetNativeSystemInfo
VirtualProtect
GetModuleFileNameA
HeapFree
HeapReAlloc
CloseHandle
ReadFile
GetFileSize
CreateFileA
TerminateThread
LeaveCriticalSection
EnterCriticalSection
InitializeCriticalSection
IsBadReadPtr
GetSystemDirectoryA

user32

wsprintfA

msvcrt

__C_specific_handler

iphlpapi

GetAdaptersInfo

Sections

.text
Size: 404KB - Virtual size: 408KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 54KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.pdata
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.xdata
Size: 8KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 16KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/4
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/19
Size: 93KB - Virtual size: 96KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/31
Size: 17KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/45
Size: 43KB - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/57
Size: 11KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/70
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/81
Size: 121KB - Virtual size: 124KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/92
Size: 6KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.dh
Size: 1.0MB - Virtual size: 1.0MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

86d6e7ce2fbdc22b58dbef8d783f761c

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

msvcrt

iphlpapi

Sections

.text Size: 404KB - Virtual size: 408KB

.data Size: 1KB - Virtual size: 4KB

.rdata Size: 54KB - Virtual size: 56KB

.pdata Size: 8KB - Virtual size: 8KB

.xdata Size: 8KB - Virtual size: 12KB

.bss Size: - Virtual size: 16KB

.idata Size: 3KB - Virtual size: 4KB

.CRT Size: 512B - Virtual size: 4KB

.tls Size: 512B - Virtual size: 4KB

.reloc Size: 1024B - Virtual size: 4KB

/4 Size: 2KB - Virtual size: 4KB

/19 Size: 93KB - Virtual size: 96KB

/31 Size: 17KB - Virtual size: 20KB

/45 Size: 43KB - Virtual size: 44KB

/57 Size: 11KB - Virtual size: 12KB

/70 Size: 3KB - Virtual size: 4KB

/81 Size: 121KB - Virtual size: 124KB

/92 Size: 6KB - Virtual size: 8KB

.dh Size: 1.0MB - Virtual size: 1.0MB

.text
Size: 404KB - Virtual size: 408KB

.data
Size: 1KB - Virtual size: 4KB

.rdata
Size: 54KB - Virtual size: 56KB

.pdata
Size: 8KB - Virtual size: 8KB

.xdata
Size: 8KB - Virtual size: 12KB

.bss
Size: - Virtual size: 16KB

.idata
Size: 3KB - Virtual size: 4KB

.CRT
Size: 512B - Virtual size: 4KB

.tls
Size: 512B - Virtual size: 4KB

.reloc
Size: 1024B - Virtual size: 4KB

/4
Size: 2KB - Virtual size: 4KB

/19
Size: 93KB - Virtual size: 96KB

/31
Size: 17KB - Virtual size: 20KB

/45
Size: 43KB - Virtual size: 44KB

/57
Size: 11KB - Virtual size: 12KB

/70
Size: 3KB - Virtual size: 4KB

/81
Size: 121KB - Virtual size: 124KB

/92
Size: 6KB - Virtual size: 8KB

.dh
Size: 1.0MB - Virtual size: 1.0MB