90e0d64c74e83ff749c60a7b1cfbea00N[.]exe

General

Target

90e0d64c74e83ff749c60a7b1cfbea00N.exe
Size

1.3MB
MD5

90e0d64c74e83ff749c60a7b1cfbea00
SHA1

3d1c13f5cabe27ee992566de1ad5bdd46ba8b277
SHA256

817b976b5d55f1108a549f7690036f9afba304dea11793c316ac9db35244f705
SHA512

8e42eec5d4e9b127aa0a921b2ea3a0d53115d4456fee847139d50c3eee4cd46bfbb534e8d35dd3fa251a0dcb2d848874fb3025173d38db095becccb6f1c903f0
SSDEEP

12288:W1RiJw/9Rrw0R1u4V/0YG3wx6EcJHUEhPUotFZr+1izHGNe8jKk34z:Yd/TwSfVcYG3K/cJHlnFR+IGNe8j3Iz

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
90e0d64c74e83ff749c60a7b1cfbea00N.exe

Files

90e0d64c74e83ff749c60a7b1cfbea00N.exe
.exe windows:4 windows x86 arch:x86

a3f6643d99ad36d95497fd78125042e6

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetVersion
CloseHandle
GetProcAddress
GetModuleHandleA
SetPriorityClass
OpenProcess
WaitForSingleObject
TerminateProcess
GetCurrentProcessId
WaitForMultipleObjectsEx
Sleep
GetCurrentProcess
lstrcmpiA
GetPriorityClass
lstrcpyA
GetLastError
UnmapViewOfFile
lstrcpynA
MapViewOfFile
CreateFileMappingA
CreateFileA
LoadLibraryA
GetEnvironmentVariableA
VirtualQueryEx
GetEnvironmentStringsW
GetCommandLineW
ReadProcessMemory
WideCharToMultiByte
HeapFree
HeapAlloc
GetOEMCP
GetACP
GetCPInfo
SetStdHandle
ReadFile
GetStringTypeW
GetStringTypeA
SetEndOfFile
SetFilePointer
GetEnvironmentStrings
FreeEnvironmentStringsW
FreeEnvironmentStringsA
UnhandledExceptionFilter
WriteFile
ExitProcess
RtlUnwind
GetCommandLineA
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
GetModuleFileNameA
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
HeapReAlloc
MultiByteToWideChar
LCMapStringA
LCMapStringW
FlushFileBuffers

user32

SetForegroundWindow
CharNextExA
wsprintfA
GetWindowLongA
GetWindowTextA
SendMessageA
GetDesktopWindow
GetWindow
GetWindowThreadProcessId

version

GetFileVersionInfoA
GetFileVersionInfoSizeA
VerQueryValueA

Sections

.text
Size: 36KB - Virtual size: 34KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1.2MB - Virtual size: 1.9MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

a3f6643d99ad36d95497fd78125042e6

Headers

File Characteristics

Imports

kernel32

user32

version

Sections

.text Size: 36KB - Virtual size: 34KB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 1.2MB - Virtual size: 1.9MB

.text
Size: 36KB - Virtual size: 34KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 1.2MB - Virtual size: 1.9MB