4654b10b02d7a54f023c8a0c4ae22520ca1472f95e56622a84f74fb2eec3da5f[.]exe

General

Target

4654b10b02d7a54f023c8a0c4ae22520ca1472f95e56622a84f74fb2eec3da5f.exe
Size

263KB
MD5

7fb8d5a913c3939e4dbcd4a4ca951555
SHA1

f5976a8d232ff76078ce70771e361182f578afc0
SHA256

4654b10b02d7a54f023c8a0c4ae22520ca1472f95e56622a84f74fb2eec3da5f
SHA512

da5376f6b67ee00699c5611c70548fcf530aeafce98d7607ccfc3558277fea46ef0f5557c2d14e95259af77200385522c2d4d8088c8eaea75255b6b964948cf0
SSDEEP

6144:z44qB4hPmyzQ8AEvobJv4c/DWHXUnzabFerCJBhuE2n:U4+yylf/DW3UMBh3C

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4654b10b02d7a54f023c8a0c4ae22520ca1472f95e56622a84f74fb2eec3da5f.exe

Files

4654b10b02d7a54f023c8a0c4ae22520ca1472f95e56622a84f74fb2eec3da5f.exe
.exe windows:5 windows x86 arch:x86

0d72904ccf66b6063fd117ccb8c03bc8

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProfileIntA
CreateSemaphoreW
CreateFileMappingW
GetTempFileNameA
LoadLibraryA
CreateMailslotA
GetComputerNameExW
GetProcAddress
lstrlenW
FormatMessageA
WaitForSingleObjectEx
GetVersionExW
GetCurrentDirectoryA
GetAtomNameW
AddAtomA
LocalFileTimeToFileTime
GetBinaryTypeA
CreateFileW
FindFirstFileA
ResetEvent
CreateMutexA
GetConsoleTitleW
LoadLibraryExA
GetCommandLineW

msimg32

TransparentBlt
AlphaBlend

cfgmgr32

CM_Add_Empty_Log_Conf
CMP_Init_Detection
CM_Add_Range
CMP_Report_LogOn
CM_Add_IDA

crypt32

CryptFormatObject
CryptFindOIDInfo
CertOIDToAlgId
CryptMsgControl
CryptMsgGetParam
CertCreateContext
CertFindAttribute
CertOpenStore
CertSaveStore
CertNameToStrA
CryptProtectData

azroles

AzGetProperty
AzCloseHandle

Sections

.text
Size: 246KB - Virtual size: 245KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.adata
Size: - Virtual size: 256B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0d72904ccf66b6063fd117ccb8c03bc8

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

msimg32

cfgmgr32

crypt32

azroles

Sections

.text Size: 246KB - Virtual size: 245KB

.adata Size: - Virtual size: 256B

.data Size: 10KB - Virtual size: 9KB

.rsrc Size: 4KB - Virtual size: 3KB

.text
Size: 246KB - Virtual size: 245KB

.adata
Size: - Virtual size: 256B

.data
Size: 10KB - Virtual size: 9KB

.rsrc
Size: 4KB - Virtual size: 3KB