147f1f93cc7f1f72898d658b4f3348c85db1c57af2d37bf36577082111e08283N

General

Target

147f1f93cc7f1f72898d658b4f3348c85db1c57af2d37bf36577082111e08283N
Size

179KB
MD5

10736048b344e392f720f69c17919fc0
SHA1

5c99042b0fa001ec7be5c01210dc4394f82efd35
SHA256

147f1f93cc7f1f72898d658b4f3348c85db1c57af2d37bf36577082111e08283
SHA512

47f0bf6b13249c907088f88b5a132bdfdaafd3c88f1f359cdf6ec917dec9e4b59724814cdced79bbaf6ad6a94380c8505de065b5ddbcc32422e5e09847611866
SSDEEP

3072:goPf0skh0WWF33mjVwO3/XQslPCdaQJ75xJpnPrq3sUEYi0VtAYL3s2CNRbIqHP/:Nf0F0WAEwO3/XQYCp75xJJP+5vi+OYQj

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
147f1f93cc7f1f72898d658b4f3348c85db1c57af2d37bf36577082111e08283N

Files

147f1f93cc7f1f72898d658b4f3348c85db1c57af2d37bf36577082111e08283N
.exe windows:4 windows x86 arch:x86

03fd78571b147fc724fcde7d6b036541

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetACP
FreeEnvironmentStringsA
GetCPInfoExW
InitializeCriticalSection
GetTickCount
TlsSetValue
WideCharToMultiByte
SetHandleCount
InterlockedExchange
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetStartupInfoA
GetEnvironmentStrings
GetLastError
EnumResourceTypesA
DeleteCriticalSection
GetOEMCP
UnhandledExceptionFilter
TlsGetValue
lstrlenW
HeapSize
LeaveCriticalSection
GetStdHandle
GetCPInfo
GetFileType
MultiByteToWideChar
QueryPerformanceCounter
InterlockedIncrement
RaiseException
GetCommandLineW
WriteFile
GetThreadLocale
GetLocaleInfoA
EnterCriticalSection
GetVersionExA
GetCurrentProcessId

msimg32

AlphaBlend
TransparentBlt

ole32

CoGetMalloc
CoTaskMemFree
CoTaskMemAlloc
StringFromGUID2
CoCreateInstance
CoTaskMemRealloc

gdi32

GetTextMetricsA
GetDeviceCaps
GetTextExtentPointA
SelectObject
DeleteObject
CreateFontIndirectA

Sections

.text
Size: 105KB - Virtual size: 105KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.tls
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 70KB - Virtual size: 70KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 120KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

03fd78571b147fc724fcde7d6b036541

Headers

File Characteristics

Imports

kernel32

msimg32

ole32

gdi32

Sections

.text Size: 105KB - Virtual size: 105KB

.tls Size: 1KB - Virtual size: 1KB

.data Size: 70KB - Virtual size: 70KB

.reloc Size: 1024B - Virtual size: 120KB

.text
Size: 105KB - Virtual size: 105KB

.tls
Size: 1KB - Virtual size: 1KB

.data
Size: 70KB - Virtual size: 70KB

.reloc
Size: 1024B - Virtual size: 120KB