24090558b6d2b672617943c9c486bb4d5707daacc7bb98657ba862b5e8b7adb2

Sharing

Copy URL Twitter E-mail

General

Target

24090558b6d2b672617943c9c486bb4d5707daacc7bb98657ba862b5e8b7adb2
Size

39KB
MD5

1e5f36a12a59a73524be118f235ab327
SHA1

cb811f5a2eadeada257471ece2d963a314a055c9
SHA256

24090558b6d2b672617943c9c486bb4d5707daacc7bb98657ba862b5e8b7adb2
SHA512

1effcef209244629a6ded1e44490730313977e422dd062cdc985e6ea80a91137e70436e96a771c8c973fd1c483f2b7b8797df806fd0c74a9743f631e3d10ed12
SSDEEP

768:1dNJhTcTdHLz2FJmsaPmqaUKTni7+nTvFDZX4sWeHC:lzTcBHLcmsAmqaUKxHC

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
24090558b6d2b672617943c9c486bb4d5707daacc7bb98657ba862b5e8b7adb2

Files

24090558b6d2b672617943c9c486bb4d5707daacc7bb98657ba862b5e8b7adb2
.exe windows:4 windows x86 arch:x86

292050148a5e6c0725707d72ec48f83e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcmpW
MultiByteToWideChar
GetModuleHandleW
lstrlenA
GetCommandLineW
lstrcpyW
lstrcatW
lstrcmpiW
GetLastError
lstrlenW
ExitProcess

user32

GetCursorPos
LoadStringW
ShowWindow
GetSysColorBrush
FrameRect
CreateWindowExW
ChangeDisplaySettingsW
GetSystemMetrics
IsWindowVisible
SendMessageW
EnableWindow
UnregisterHotKey
EnumDisplayDevicesW
RegisterHotKey
CallWindowProcW
PostMessageW
SetWindowLongW
KillTimer
LoadCursorW
GetClientRect
PtInRect
wsprintfW
GetDC
TranslateMessage
RegisterClassExW
LoadIconW
OffsetRect
SetTimer
GetWindowRect
GetMessageW
PostQuitMessage
SetWindowTextW
FillRect
GetAsyncKeyState
InvalidateRect
GetWindowLongW
MessageBoxW
ReleaseDC
DefWindowProcW
EnumDisplaySettingsW
DispatchMessageW
DrawTextW

gdi32

CreateSolidBrush
SelectObject
DeleteObject
SetBkMode
GetDeviceCaps
SetTextColor
GetStockObject

advapi32

RegQueryValueExW
RegEnumValueW
RegOpenKeyExW
RegEnumKeyExW
RegCloseKey

msvcrt

realloc
_gcvt
sqrt
free
??1type_info@@UAE@XZ
_onexit
__dllonexit
memcpy
??3@YAXPAX@Z
memset

shlwapi

StrCmpNA
StrToIntExW
StrChrW
StrStrIW
StrCmpNIW

setupapi

SetupDiGetDeviceRegistryPropertyW
SetupDiEnumDeviceInfo
SetupDiGetClassDevsExW
SetupDiOpenDevRegKey

comctl32

ImageList_Destroy
ord17
ImageList_Create

Sections

.text
Size: 21KB - Virtual size: 21KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 512B - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 15KB - Virtual size: 33KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

292050148a5e6c0725707d72ec48f83e

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

msvcrt

shlwapi

setupapi

comctl32

Sections

.text Size: 21KB - Virtual size: 21KB

.data Size: 1024B - Virtual size: 3KB

.CRT Size: 512B - Virtual size: 4B

.rsrc Size: 15KB - Virtual size: 33KB

.text
Size: 21KB - Virtual size: 21KB

.data
Size: 1024B - Virtual size: 3KB

.CRT
Size: 512B - Virtual size: 4B

.rsrc
Size: 15KB - Virtual size: 33KB