4ceb4465a3fab0932ee1708ee66b66049b77ad4642005426de211ca4dd2ff804

General

Target

4ceb4465a3fab0932ee1708ee66b66049b77ad4642005426de211ca4dd2ff804
Size

184KB
MD5

cae0ac3eb615e4480632aa97adff0c3e
SHA1

aa4959d64793376154786119a9825e3d4aed8616
SHA256

4ceb4465a3fab0932ee1708ee66b66049b77ad4642005426de211ca4dd2ff804
SHA512

6cbdfef84a76ad52a9f69f7207b7010fb84b30f390912bc621921c61463f6b3505a965d04243710ab7295fd7ade40c56c45481364870a2633efc027f34fc3f11
SSDEEP

1536:H5YuNKG8j+OmERSs8SFSbVGoVtMMMGpR2/163EaOcl46vo:HBKhRSsBFSl/MMMU2t63EX6A

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4ceb4465a3fab0932ee1708ee66b66049b77ad4642005426de211ca4dd2ff804

Files

4ceb4465a3fab0932ee1708ee66b66049b77ad4642005426de211ca4dd2ff804
.exe windows x86

e27c058ef43603ed4efd2b6bca49da8b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

lstrlenA
Sleep
SetThreadPriority
SetPriorityClass
HeapFree
HeapAlloc
GetProcessHeap
GetModuleHandleA
GetCurrentThread
GetCurrentProcess
ExitProcess

user32

wsprintfA
WaitMessage
TranslateMessage
ShowWindow
ShowCursor
ReleaseDC
RegisterClassA
PostQuitMessage
PeekMessageA
MessageBoxA
LoadIconA
LoadCursorA
GetDC
EndPaint
DrawTextA
DispatchMessageA
DefWindowProcA
CreateWindowExA
BeginPaint
AdjustWindowRectEx

winmm

timeGetTime

gdi32

TextOutA
SetTextColor
SetDIBColorTable
SetBkMode
SetBkColor
SelectObject
SaveDC
RestoreDC
PatBlt
GetTextExtentPoint32A
DeleteObject
DeleteDC
CreateFontIndirectA
CreateDIBSection
CreateCompatibleDC
CreateCompatibleBitmap
BitBlt

Sections

.idata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

_TEXT
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

_DATA
Size: 6KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 161KB - Virtual size: 160KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

e27c058ef43603ed4efd2b6bca49da8b

Headers

File Characteristics

Imports

kernel32

user32

winmm

gdi32

Sections

.idata Size: 1KB - Virtual size: 1KB

_TEXT Size: 10KB - Virtual size: 10KB

_DATA Size: 6KB - Virtual size: 12KB

.rsrc Size: 161KB - Virtual size: 160KB

.reloc Size: 4KB - Virtual size: 4KB

.idata
Size: 1KB - Virtual size: 1KB

_TEXT
Size: 10KB - Virtual size: 10KB

_DATA
Size: 6KB - Virtual size: 12KB

.rsrc
Size: 161KB - Virtual size: 160KB

.reloc
Size: 4KB - Virtual size: 4KB