b84bd7a24dcc36e2fa30693b5e6a5adc0788c0ba11df8feb0b37b7d8d5455a04N

General

Target

b84bd7a24dcc36e2fa30693b5e6a5adc0788c0ba11df8feb0b37b7d8d5455a04N
Size

169KB
MD5

30e2a38a4e38e828e9cdcfed26bce200
SHA1

8f5e954dcd164cd7812465510437515c8ea1ca21
SHA256

b84bd7a24dcc36e2fa30693b5e6a5adc0788c0ba11df8feb0b37b7d8d5455a04
SHA512

3e705a03bac2b05fc7e3229ade6f545d990d1f7287ec8aebc28371fd472acc49f86851ca7a682eb5c10cb680112eaa6355ef408d4b43e8058b95286f98927c30
SSDEEP

3072:dCy4KtOfwrmd2k0S86cqPY+v//QKdSWnlHX3GiGqCCAznGTsBnBR3:dJhst2+jfQKAWl33GbznGTsBnB

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b84bd7a24dcc36e2fa30693b5e6a5adc0788c0ba11df8feb0b37b7d8d5455a04N

Files

b84bd7a24dcc36e2fa30693b5e6a5adc0788c0ba11df8feb0b37b7d8d5455a04N
.dll windows:4 windows x86 arch:x86

e534b2ab062fe754ddfb3e819e23845b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CloseHandle
CreateProcessA
DeleteCriticalSection
ExitProcess
FindResourceA
FreeEnvironmentStringsW
FreeLibrary
GetACP
GetCommandLineA
GetCurrentThread
GetModuleHandleA
GetOEMCP
GetStartupInfoA
GetStringTypeA
GetThreadContext
GetUserDefaultLCID
GlobalAlloc
GlobalLock
HeapAlloc
HeapCreate
HeapReAlloc
MultiByteToWideChar
RaiseException
ResumeThread
RtlUnwind
SetLastError
SetUnhandledExceptionFilter
TlsSetValue
WideCharToMultiByte
WriteConsoleW
lstrcpynA

msvcrt

__getmainargs
__p__commode
__set_app_type
exit
malloc
strpbrk
wcscat
wcslen

user32

SetWindowLongA
ReleaseDC
LoadMenuA
GetKeyState
SetFocus

ole32

CoTaskMemFree
CoCreateInstance

Exports

Exports

CheckForUpdatesSync
CreateCaretMEUED
FC_GetFunctionList
FSimpleStr
GetUpdateAtIndex
GetUpdateVersion
HrInitUCScribe
HrSetFontFallback
OpenCaptureDevice
TextOutWCP_ME
W32N_GetNetCardRegistryPath
W32N_OpenProtocolDriver

Sections

.text
Size: 88KB - Virtual size: 184KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 77KB - Virtual size: 80KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e534b2ab062fe754ddfb3e819e23845b

Headers

File Characteristics

Imports

kernel32

msvcrt

user32

ole32

Exports

Exports

Sections

.text Size: 88KB - Virtual size: 184KB

.data Size: 77KB - Virtual size: 80KB

.rsrc Size: 1KB - Virtual size: 4KB

.reloc Size: 512B - Virtual size: 4KB

.text
Size: 88KB - Virtual size: 184KB

.data
Size: 77KB - Virtual size: 80KB

.rsrc
Size: 1KB - Virtual size: 4KB

.reloc
Size: 512B - Virtual size: 4KB