87c2a597ddaca65031edb76462391be4212a5d789ab72cf0900e82da19ecf171

General

Target

87c2a597ddaca65031edb76462391be4212a5d789ab72cf0900e82da19ecf171
Size

213KB
MD5

bd8dd101e06984152d8c4272e5e33e88
SHA1

8e9297595c825cc1bd74f81dde649ff17666b468
SHA256

87c2a597ddaca65031edb76462391be4212a5d789ab72cf0900e82da19ecf171
SHA512

41da2572a3018e31e910003dd66af91379de5ea6e9b035abd2d35f57ac7972f736d6f8ce51450e8b5280d1e6cab1b9d3c9f89bf8c5f58de002580ff5c4657ff9
SSDEEP

6144:WxllZ+a1W6Ou9s240xViNwFAu81vaqY/9Hju9:WxllZ+a1W6P9s2ViN7h97MHk

Score

3^/10

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/5aa2c01a644cd991b9cc0056f03a0a5462ea4ce6f241d1ad78f9e0b6e042c183

87c2a597ddaca65031edb76462391be4212a5d789ab72cf0900e82da19ecf171
.zip

Password: infected
5aa2c01a644cd991b9cc0056f03a0a5462ea4ce6f241d1ad78f9e0b6e042c183
.exe windows:6 windows x86 arch:x86

35807dcde258f88fa3ce5c21adc607fb

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

EnumTimeFormatsW
GetConsoleOutputCP
GetLastError
GetModuleHandleW
GetProcessHeap
GetStdHandle
HeapAlloc
HeapFree
LocalFree
VirtualProtect
WideCharToMultiByte
WriteConsoleW
WriteFile

user32

LoadStringW

Sections

.text
Size: 512B - Virtual size: 421B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 470B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 664B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 76B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ