4b3b3f6f236e48c4e34ecc8fe12f0231cbf9e10f159b5bfca473de232fdd924fN

Sharing

Copy URL Twitter E-mail

General

Target

4b3b3f6f236e48c4e34ecc8fe12f0231cbf9e10f159b5bfca473de232fdd924fN
Size

892KB
MD5

20fc15fc48e19cccb6626b40e55d56b0
SHA1

a5453c6a945d958228e4cf9dec9bb2aa260ae5fc
SHA256

4b3b3f6f236e48c4e34ecc8fe12f0231cbf9e10f159b5bfca473de232fdd924f
SHA512

afadcf3f1c6e57a87c70eceeb9e49f3978d65c58057bdee1f3669ade0802dc0eb4218b9662def2561fbc6bf094fa207a5e1f1640770297b698b5bfbebe76843b
SSDEEP

12288:vDByd5hxzm9qke69T7dcrx/y+o05iSHJVv+Yusd31FyUxX42mGfbAMiS9W1N:dqPkeGT7dUisVv+0dLyUt9bAMiS92N

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4b3b3f6f236e48c4e34ecc8fe12f0231cbf9e10f159b5bfca473de232fdd924fN

Files

4b3b3f6f236e48c4e34ecc8fe12f0231cbf9e10f159b5bfca473de232fdd924fN
.exe windows:4 windows x86 arch:x86

e0c9c34ba919bcaca28c42688eb1ad33

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

WaitForSingleObject
GetCurrentDirectoryA
GetModuleFileNameA
GetPrivateProfileStringA
GetExitCodeProcess
FindFirstFileA
lstrlenA
GetWindowsDirectoryA
GetSystemDirectoryA
CloseHandle
GetVersionExA
FindClose
CreateProcessA
SetStdHandle
LoadLibraryA
GetProcAddress
SetFilePointer
GetLastError
GetStringTypeW
GetStringTypeA
WriteFile
ExitProcess
TerminateProcess
GetCurrentProcess
HeapFree
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetVersion
GetCPInfo
GetACP
GetOEMCP
WideCharToMultiByte
MultiByteToWideChar
LCMapStringA
LCMapStringW
GetEnvironmentVariableA
HeapDestroy
HeapCreate
VirtualFree
HeapAlloc
VirtualAlloc
HeapReAlloc
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
RtlUnwind
FlushFileBuffers

advapi32

RegCloseKey
RegSetValueExA
RegCreateKeyExA

shlwapi

PathCombineA
PathRemoveFileSpecA
PathStripToRootA

version

GetFileVersionInfoA
GetFileVersionInfoSizeA
VerQueryValueA

Sections

.text
Size: 24KB - Virtual size: 23KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 41KB - Virtual size: 44KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

miiwycj
Size: 4KB - Virtual size: 76KB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 88KB - Virtual size: 85KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 80KB - Virtual size: 77KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 80KB - Virtual size: 77KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 80KB - Virtual size: 77KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 80KB - Virtual size: 77KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 80KB - Virtual size: 77KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 80KB - Virtual size: 77KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 268KB - Virtual size: 268KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

e0c9c34ba919bcaca28c42688eb1ad33

Headers

File Characteristics

Imports

kernel32

advapi32

shlwapi

version

Sections

.text Size: 24KB - Virtual size: 23KB

.rdata Size: 4KB - Virtual size: 2KB

.data Size: 41KB - Virtual size: 44KB

miiwycj Size: 4KB - Virtual size: 76KB

.text Size: 88KB - Virtual size: 85KB

.text Size: 80KB - Virtual size: 77KB

.text Size: 80KB - Virtual size: 77KB

.text Size: 80KB - Virtual size: 77KB

.text Size: 80KB - Virtual size: 77KB

.text Size: 80KB - Virtual size: 77KB

.text Size: 80KB - Virtual size: 77KB

.text Size: 268KB - Virtual size: 268KB

.text
Size: 24KB - Virtual size: 23KB

.rdata
Size: 4KB - Virtual size: 2KB

.data
Size: 41KB - Virtual size: 44KB

miiwycj
Size: 4KB - Virtual size: 76KB

.text
Size: 88KB - Virtual size: 85KB

.text
Size: 80KB - Virtual size: 77KB

.text
Size: 80KB - Virtual size: 77KB

.text
Size: 80KB - Virtual size: 77KB

.text
Size: 80KB - Virtual size: 77KB

.text
Size: 80KB - Virtual size: 77KB

.text
Size: 80KB - Virtual size: 77KB

.text
Size: 268KB - Virtual size: 268KB