a85cade74a2545a1a2f39e2094be35920c9e20a2e3a9de6580447fa1e62cf0aaN

General

Target

a85cade74a2545a1a2f39e2094be35920c9e20a2e3a9de6580447fa1e62cf0aaN
Size

177KB
MD5

29e6e8e4ae1b7747605f2cb01f68b540
SHA1

fba77048112944aca2426b370c413a95c77ae6d7
SHA256

a85cade74a2545a1a2f39e2094be35920c9e20a2e3a9de6580447fa1e62cf0aa
SHA512

55c9ecbf8543b30fd4708d5974aa036233bf615c308898a782a998575b09a79a586ac527249284b6b70fa10dbac0b107db07c57ee72d8cdf634905e60816f277
SSDEEP

3072:0h1sxzrgw203Fem7Dae+TwRmCjXjTR3kJFlgxo+dU7cIMLoxU1wh7:/T9eEDaJTUmCjXn6JFd+y7Yu2

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a85cade74a2545a1a2f39e2094be35920c9e20a2e3a9de6580447fa1e62cf0aaN

Files

a85cade74a2545a1a2f39e2094be35920c9e20a2e3a9de6580447fa1e62cf0aaN
.exe windows:4 windows x86 arch:x86

c97c9b845e55944565b69333d68fc51e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

shell32

SHCreateDirectoryExW
SHFileOperationW
SHGetFolderPathW

user32

GetClassLongA
MessageBoxW

advapi32

RegCreateKeyExW
RegCloseKey
RegSetValueExW

rpcrt4

UuidCreate

kernel32

InitializeCriticalSection
GetModuleFileNameW
HeapReAlloc
GetModuleHandleA
CloseHandle
GetThreadPriority
HeapFree
CreateFileA
UnhandledExceptionFilter
GetProcessHeap
HeapAlloc
WriteConsoleA
LCMapStringA
SetStdHandle
RaiseException
Sleep
GetLocaleInfoW
GetVersionExA
ExitProcess
GetFullPathNameW
SetCommConfig
InterlockedDecrement
GetCurrentDirectoryW
RtlUnwind
EnumSystemLocalesA
EnumResourceNamesA
IsValidLocale
InterlockedIncrement
GetProcAddress
HeapSize
GetCurrentThreadId
EnterCriticalSection
DeleteCriticalSection
ExitProcess
WideCharToMultiByte
ReadFile
LCMapStringW
SetUnhandledExceptionFilter
GetCPInfo
TerminateProcess
IsValidCodePage
LeaveCriticalSection
GetCurrentProcess
GetUserDefaultLCID
GetConsoleOutputCP
MultiByteToWideChar
GetCommandLineA
SetEndOfFile
WriteConsoleW
WriteFile
GetLastError
GlobalAlloc
IsDebuggerPresent
GetFullPathNameA

Sections

.text
Size: 144KB - Virtual size: 143KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 29KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.crt
Size: 512B - Virtual size: 352KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c97c9b845e55944565b69333d68fc51e

Headers

File Characteristics

Imports

shell32

user32

advapi32

rpcrt4

kernel32

Sections

.text Size: 144KB - Virtual size: 143KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 29KB - Virtual size: 29KB

.crt Size: 512B - Virtual size: 352KB

.text
Size: 144KB - Virtual size: 143KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 29KB - Virtual size: 29KB

.crt
Size: 512B - Virtual size: 352KB