b601ecf5790e99428832c5f6cd736866ee204b143fd7e4ae4e977c9a74facad9

Sharing

Copy URL

Twitter E-mail

General

Target

b601ecf5790e99428832c5f6cd736866ee204b143fd7e4ae4e977c9a74facad9
Size

284KB
MD5

69096a75af73614090d2731adbc7fee3
SHA1

ac966e235442d3170998e4c24587eedd62ec7fed
SHA256

b601ecf5790e99428832c5f6cd736866ee204b143fd7e4ae4e977c9a74facad9
SHA512

8f956f9099c4a7bbd588c4fd7cf3106e11e8aeb126e3e3034517c18af5ca26dc70f69f9ebe0556a65b73921850a3c85644d9855006097dae4db8605c0f67764a
SSDEEP

3072:NedHlD0x+BCBodxLqxnU7uqGPXy6Zs8YhSPpxXQ9J0vNC3:Nergx+BAojLqxcuFTO8cSP7gE1

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b601ecf5790e99428832c5f6cd736866ee204b143fd7e4ae4e977c9a74facad9

Files

b601ecf5790e99428832c5f6cd736866ee204b143fd7e4ae4e977c9a74facad9
.exe windows:4 windows x64 arch:x64

61fa72df107d23af4aa65b79f73ef4f6

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

CloseHandle
GetModuleHandleA
LoadLibraryA
LocalAlloc
LocalFree
GetModuleFileNameA
ExitProcess

msvcrt

fprintf

Sections

.text
Size: - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.pdata
Size: - Virtual size: 696B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.xdata
Size: - Virtual size: 568B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: - Virtual size: 104B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 187KB - Virtual size: 188KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.vmp0
Size: - Virtual size: 37KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE

.vmp1
Size: 95KB - Virtual size: 94KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

61fa72df107d23af4aa65b79f73ef4f6

Headers

File Characteristics

Imports

kernel32

msvcrt

Sections

.text Size: - Virtual size: 8KB

.data Size: - Virtual size: 1KB

.rdata Size: - Virtual size: 2KB

.pdata Size: - Virtual size: 696B

.xdata Size: - Virtual size: 568B

.bss Size: - Virtual size: 2KB

.idata Size: - Virtual size: 2KB

.CRT Size: - Virtual size: 104B

.tls Size: 512B - Virtual size: 16B

.rsrc Size: 187KB - Virtual size: 188KB

.vmp0 Size: - Virtual size: 37KB

.vmp1 Size: 95KB - Virtual size: 94KB

.text
Size: - Virtual size: 8KB

.data
Size: - Virtual size: 1KB

.rdata
Size: - Virtual size: 2KB

.pdata
Size: - Virtual size: 696B

.xdata
Size: - Virtual size: 568B

.bss
Size: - Virtual size: 2KB

.idata
Size: - Virtual size: 2KB

.CRT
Size: - Virtual size: 104B

.tls
Size: 512B - Virtual size: 16B

.rsrc
Size: 187KB - Virtual size: 188KB

.vmp0
Size: - Virtual size: 37KB

.vmp1
Size: 95KB - Virtual size: 94KB