fe4b780a6340271c02e2f6296e14afdafdce2e72ca74a42c5ba4fc4f2aedf276

General

Target

fe4b780a6340271c02e2f6296e14afdafdce2e72ca74a42c5ba4fc4f2aedf276
Size

453KB
MD5

8b5e9993ad771f16526ac71f686763e8
SHA1

ce9ed50c2e0ce44c88d3ed7bcf5ba990ffe13769
SHA256

fe4b780a6340271c02e2f6296e14afdafdce2e72ca74a42c5ba4fc4f2aedf276
SHA512

a90b662c3e83e4de2bc88f59924d34d8b6e824af39e5b6181c5036c6a4d037a4f2af782a70050bdea82b8571ee336ad2d0d8b69c143a6ddf05f4ebbe1d93608a
SSDEEP

12288:nOwmcKZ8Z+r69dutTWtnb4WLvv7Ca+n0Gdv7Tmaa:ylPO9dutSJb3Ca+tTTma

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fe4b780a6340271c02e2f6296e14afdafdce2e72ca74a42c5ba4fc4f2aedf276

Files

fe4b780a6340271c02e2f6296e14afdafdce2e72ca74a42c5ba4fc4f2aedf276
.dll windows x86

820ab24e53af2dbafc74d24f87e40262

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

user32

MessageBoxA

comctl32

InitCommonControls

kernel32

LoadLibraryA
GetProcAddress

Exports

Exports

ad

Sections

.pklstb
Size: 260KB - Virtual size: 516KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pklstb
Size: 67KB - Virtual size: 204KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pklstb
Size: 20KB - Virtual size: 156KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 11KB - Virtual size: 24KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pklstb
Size: 68KB - Virtual size: 68KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pklstb
Size: 25KB - Virtual size: 24KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

820ab24e53af2dbafc74d24f87e40262

Headers

File Characteristics

Imports

user32

comctl32

kernel32

Exports

Exports

Sections

.pklstb Size: 260KB - Virtual size: 516KB

.pklstb Size: 67KB - Virtual size: 204KB

.pklstb Size: 20KB - Virtual size: 156KB

.rsrc Size: 11KB - Virtual size: 24KB

.pklstb Size: 68KB - Virtual size: 68KB

.pklstb Size: 25KB - Virtual size: 24KB

.pklstb
Size: 260KB - Virtual size: 516KB

.pklstb
Size: 67KB - Virtual size: 204KB

.pklstb
Size: 20KB - Virtual size: 156KB

.rsrc
Size: 11KB - Virtual size: 24KB

.pklstb
Size: 68KB - Virtual size: 68KB

.pklstb
Size: 25KB - Virtual size: 24KB