5a99f78c49ac9991c3ab2fad137dfdfcf6b90c5b06d370d6690c95e98543bab1N

General

Target

5a99f78c49ac9991c3ab2fad137dfdfcf6b90c5b06d370d6690c95e98543bab1N
Size

3.4MB
MD5

7175046a8c43d11a2b0125d715556190
SHA1

bcb349d5dccd52e74551825cff87310ce69dfb2e
SHA256

5a99f78c49ac9991c3ab2fad137dfdfcf6b90c5b06d370d6690c95e98543bab1
SHA512

14a28c56b9d769d9d58ce9310abb9ca8e074497eb53ce9fa38aad168a1327dafdac51c5ec6f15b84acf3873f02505f0e9761ac3e585e881362a57b83a8dd5a28
SSDEEP

98304:IiyW9LPjQUaDo17A3FJp4UhrES8dtcSrnZJ+vNJ:779LPjQUaDhVbZlESZS7ZJIJ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5a99f78c49ac9991c3ab2fad137dfdfcf6b90c5b06d370d6690c95e98543bab1N

Files

5a99f78c49ac9991c3ab2fad137dfdfcf6b90c5b06d370d6690c95e98543bab1N
.exe windows:4 windows x86 arch:x86

812f939a51a6f881acd7975087a5725b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCurrentThreadId
GetCurrentProcess
TerminateProcess
UnhandledExceptionFilter
GetTickCount
FreeLibrary
HeapFree
HeapAlloc
LocalFree
LeaveCriticalSection
EnterCriticalSection
WaitForSingleObject
GetProcessHeap
ExitProcess
GetStdHandle
GetStartupInfoW
IsDebuggerPresent
FindClose
GetACP
GetFileType
TlsGetValue
HeapReAlloc
GetConsoleMode
LoadLibraryW
LoadLibraryExW
GetCPInfo
SetFilePointer
GetFileAttributesW
CompareStringW
LCMapStringW
GetModuleFileNameA
InitializeCriticalSectionAndSpinCount
GetOEMCP
FreeEnvironmentStringsW
IsProcessorFeaturePresent
FindNextFileW
FindFirstFileW
VirtualAlloc
GetConsoleCP
LocalAlloc
GetCommandLineA
DecodePointer
SetEndOfFile
GetVersionExW
ReleaseMutex
OutputDebugStringW
EncodePointer
lstrlenW
GetModuleHandleExW
CreateDirectoryW
UnmapViewOfFile
GetExitCodeProcess
ExpandEnvironmentStringsW

user32

TranslateMessage
LoadStringW
DestroyWindow
SetWindowLongW
GetDlgItem
GetSystemMetrics
GetWindowRect
PostMessageW
SetWindowPos
IsWindow
EndDialog
SetTimer
LoadIconW
SetFocus
PeekMessageW
BeginPaint
SetCursor
KillTimer
RegisterClassW
GetWindowTextW
UpdateWindow
SystemParametersInfoW
MessageBoxA
CharUpperW

Sections

.idata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.text
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 612KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 3.4MB - Virtual size: 3.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

812f939a51a6f881acd7975087a5725b

Headers

File Characteristics

Imports

kernel32

user32

Sections

.idata Size: 2KB - Virtual size: 1KB

.text Size: 6KB - Virtual size: 6KB

.data Size: - Virtual size: 612KB

.rdata Size: 3.4MB - Virtual size: 3.4MB

.idata
Size: 2KB - Virtual size: 1KB

.text
Size: 6KB - Virtual size: 6KB

.data
Size: - Virtual size: 612KB

.rdata
Size: 3.4MB - Virtual size: 3.4MB