ab68776351b1425f1743d58f41b8a4c0N[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

ab68776351b1425f1743d58f41b8a4c0N.exe
Size

32KB
MD5

ab68776351b1425f1743d58f41b8a4c0
SHA1

1e95475f6ede8d5788e40f475eaba6676dc48cb8
SHA256

d3ef4e2feb5ebe683a8dc069b9a1c1d0b1055d0d14f657474b2a8a27763ffe86
SHA512

3446f5cebeb76cb40479c2241f4ec7d19c29120e6036e5a3b08d264b345439037c5677bdcef93ddc7aa8fc58738e73bb5a18bdffe2345dbecc73a9075867dba2
SSDEEP

384:QOAq8NPmj4kQNqoV4+PCyP4EYQTGfuTE6b1RzRWjBegCxGrCU5xT:/8RJ5C64EYQTGCz8egrnrT

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ab68776351b1425f1743d58f41b8a4c0N.exe

Files

ab68776351b1425f1743d58f41b8a4c0N.exe
.dll windows:4 windows x86 arch:x86

40a088216bc2eb127a4ce11b0f28e281

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_DLL

Imports

libgmp-10

__gmpn_popcount
__gmpz_add
__gmpz_addmul
__gmpz_and
__gmpz_bin_ui
__gmpz_clear
__gmpz_clrbit
__gmpz_cmp
__gmpz_cmpabs
__gmpz_com
__gmpz_combit
__gmpz_export
__gmpz_fac_ui
__gmpz_fdiv_q
__gmpz_fib_ui
__gmpz_gcd
__gmpz_gcdext
__gmpz_get_d
__gmpz_get_str
__gmpz_hamdist
__gmpz_import
__gmpz_init
__gmpz_invert
__gmpz_ior
__gmpz_jacobi
__gmpz_lcm
__gmpz_lucnum_ui
__gmpz_mod
__gmpz_mul
__gmpz_mul_2exp
__gmpz_nextprime
__gmpz_powm
__gmpz_primorial_ui
__gmpz_probab_prime_p
__gmpz_remove
__gmpz_root
__gmpz_scan0
__gmpz_scan1
__gmpz_set
__gmpz_set_si
__gmpz_set_str
__gmpz_set_ui
__gmpz_setbit
__gmpz_sizeinbase
__gmpz_sub
__gmpz_submul
__gmpz_swap
__gmpz_tdiv_q
__gmpz_tdiv_qr
__gmpz_tdiv_r
__gmpz_tstbit
__gmpz_xor

kernel32

DeleteCriticalSection
EnterCriticalSection
FreeLibrary
GetLastError
GetModuleHandleA
GetProcAddress
InitializeCriticalSection
LeaveCriticalSection
LoadLibraryA
TlsGetValue
VirtualProtect
VirtualQuery

libmingwex-4

__mingw_free

msvcrt

__dllonexit
_errno
_iob
abort
calloc
fflush
fwrite
malloc
vfprintf

agena

agnL_optnonnegint
agnL_optposint
agn_checklstring
agn_checknonnegint
agn_checknumber
agn_checkposint
agn_getutype
agn_rawsetfield
agn_tostring
luaL_checkudata
luaL_checkuint32_t
luaL_error
luaL_newmetatable
luaL_register
lua_concat
lua_createtable
lua_newuserdata
lua_pushboolean
lua_pushfstring
lua_pushnil
lua_pushnumber
lua_pushstring
lua_pushundefined
lua_setmetatabletoobject
lua_settop
lua_type
lua_typename

Exports

Exports

luaopen_mp

Sections

.text
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 8B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

/4
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 100B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 68B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 32B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

40a088216bc2eb127a4ce11b0f28e281

Headers

File Characteristics

Imports

libgmp-10

kernel32

libmingwex-4

msvcrt

agena

Exports

Exports

Sections

.text Size: 13KB - Virtual size: 12KB

.data Size: 512B - Virtual size: 8B

.rdata Size: 2KB - Virtual size: 2KB

/4 Size: 5KB - Virtual size: 4KB

.bss Size: - Virtual size: 100B

.edata Size: 512B - Virtual size: 68B

.idata Size: 3KB - Virtual size: 3KB

.CRT Size: 512B - Virtual size: 24B

.tls Size: 512B - Virtual size: 32B

.reloc Size: 1KB - Virtual size: 1KB

.text
Size: 13KB - Virtual size: 12KB

.data
Size: 512B - Virtual size: 8B

.rdata
Size: 2KB - Virtual size: 2KB

/4
Size: 5KB - Virtual size: 4KB

.bss
Size: - Virtual size: 100B

.edata
Size: 512B - Virtual size: 68B

.idata
Size: 3KB - Virtual size: 3KB

.CRT
Size: 512B - Virtual size: 24B

.tls
Size: 512B - Virtual size: 32B

.reloc
Size: 1KB - Virtual size: 1KB