761a9722d17a995cdb504aa2827e526c1ef7b390e2277ab2fb0f85b0737abe4e

General

Target

761a9722d17a995cdb504aa2827e526c1ef7b390e2277ab2fb0f85b0737abe4e
Size

1.0MB
MD5

0f055a69a984adaf9b645caf78036c97
SHA1

f42623384d44e2387c52295874a2a7f1cd8ce929
SHA256

761a9722d17a995cdb504aa2827e526c1ef7b390e2277ab2fb0f85b0737abe4e
SHA512

6faa6d3cf7d29e5c42531f41fa599d4e705fb5fb58f3b2c515e35ba366be9cb5ec80fb8b1a775e8dfe0ad1a07cf21bc909b26faed2cf73923d16959d637479b2
SSDEEP

12288:R1ec/eFqGwf63oXk2yFqR+lIaaiEOqN/L0FgEhBCpJJNn8/MPr4OsnM:be7qGK63o024qR+aaHEx/wFvUPEOs

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

Processes:

resource
761a9722d17a995cdb504aa2827e526c1ef7b390e2277ab2fb0f85b0737abe4e

Files

761a9722d17a995cdb504aa2827e526c1ef7b390e2277ab2fb0f85b0737abe4e
.exe windows:4 windows x86 arch:x86

90981fbbec7742867b1815699dcc6d79

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
LoadLibraryA
VirtualAlloc
VirtualFree
FreeLibrary
Sleep
GetModuleFileNameA
WinExec
LockResource
LoadResource
SizeofResource
FindResourceA
GetFileAttributesA
RtlUnwind
RaiseException
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetVersion
ExitProcess
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
HeapFree
GetCurrentThreadId
TlsSetValue
TlsAlloc
SetLastError
TlsGetValue
GetLastError
SetUnhandledExceptionFilter
DebugBreak
GetStdHandle
WriteFile
InterlockedDecrement
OutputDebugStringA
InterlockedIncrement
IsBadWritePtr
IsBadReadPtr
HeapValidate
CloseHandle
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetFileType
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
HeapAlloc
HeapReAlloc
IsBadCodePtr
SetStdHandle
FlushFileBuffers
SetFilePointer
CreateFileA
GetCPInfo
GetACP
GetOEMCP
MultiByteToWideChar
GetStringTypeA
GetStringTypeW
SetEndOfFile
ReadFile
LCMapStringA
LCMapStringW

Sections

.text
Size: 64KB - Virtual size: 61KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 192KB - Virtual size: 195KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 784KB - Virtual size: 780KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

90981fbbec7742867b1815699dcc6d79

Headers

File Characteristics

Imports

kernel32

Sections

.text Size: 64KB - Virtual size: 61KB

.rdata Size: 8KB - Virtual size: 7KB

.data Size: 192KB - Virtual size: 195KB

.rsrc Size: 784KB - Virtual size: 780KB

.text
Size: 64KB - Virtual size: 61KB

.rdata
Size: 8KB - Virtual size: 7KB

.data
Size: 192KB - Virtual size: 195KB

.rsrc
Size: 784KB - Virtual size: 780KB