b18482d3930e6c5d8c1d4dadaee8da64

Sharing

Copy URL Twitter E-mail

General

Target

b18482d3930e6c5d8c1d4dadaee8da64
Size

181KB
MD5

b18482d3930e6c5d8c1d4dadaee8da64
SHA1

ec2b138bf4647ddf0181de099f1949f13dedb99c
SHA256

7229917146c8f4096e10dda084f690baae28bb3d956b90145490b026590cf3e9
SHA512

c7bcc7275c134120e10a0f534d74514faeb103272bec99d4f27f1db4122b70802b657673634ceb1fcf33291d72e8763b4ab949dea866bafbb16f722bd3e5f92e
SSDEEP

1536:XNu5gCQ8lX9t5Ry+xKWvfxHXsji/Ohg48H+hsjlOQynU:0gCQaHy+xJhXoi/Ohg45FU

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b18482d3930e6c5d8c1d4dadaee8da64

Files

b18482d3930e6c5d8c1d4dadaee8da64
.exe windows:3 windows x86 arch:x86

61482b15ab9148eca2be9d9b27803f49

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

user32

DialogBoxParamA
InflateRect
CheckDlgButton
FrameRect
GetSysColor
SetFocus
CopyRect
PtInRect
LoadAcceleratorsA
GetMessageA
GetClientRect
UpdateWindow
InvalidateRect
GetDlgItem
CreateWindowExA
AdjustWindowRect
RegisterClassA
LoadIconA
RegisterWindowMessageA
ReleaseDC
GetDC
TranslateMessage
ClientToScreen
WinHelpA
EndDialog
KillTimer
PostQuitMessage
IsIconic
DispatchMessageA
LoadBitmapA
GetKeyState
DestroyWindow
TranslateAcceleratorA
PostMessageA
IntersectRect
LoadStringA
MessageBoxA
ShowWindow
InvertRect
SetTimer
PeekMessageA
DrawTextA
EnableWindow
ShowCursor
GetMenu
EnableMenuItem
SetCapture
ReleaseCapture
DefWindowProcA
BeginPaint
EndPaint
LoadCursorA
CheckRadioButton
IsDlgButtonChecked
MoveWindow
SetCursorPos

gdi32

GetTextExtentPointA
BitBlt
LineDDA
SetTextColor
GetPixel
StretchBlt
SetPixel
GetObjectA
CreateSolidBrush
GetDeviceCaps
GetTextMetricsA
DeleteObject
CreateCompatibleDC
CreateCompatibleBitmap
DeleteDC
TextOutA
GetStockObject
PtVisible
SetBrushOrgEx
SelectObject
PatBlt
MoveToEx
LineTo
SetROP2

shell32

ShellAboutA

crtdll

__GetMainArgs
_local_unwind2
_global_unwind2
_fmode_dll
_commode_dll
srand
_initterm
_acmdln_dll
exit
_XcptFilter
_exit
rand
time

kernel32

GetModuleHandleA
GetStartupInfoA
LocalAlloc
LocalFree
WriteProfileStringA
GetProfileStringA
GetProfileIntA
MulDiv

Sections

.text
Size: 25KB - Virtual size: 25KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 996B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 149KB - Virtual size: 149KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

61482b15ab9148eca2be9d9b27803f49

Headers

File Characteristics

Imports

user32

gdi32

shell32

crtdll

kernel32

Sections

.text Size: 25KB - Virtual size: 25KB

.data Size: 1024B - Virtual size: 996B

.rsrc Size: 149KB - Virtual size: 149KB

.reloc Size: 3KB - Virtual size: 2KB

.text
Size: 25KB - Virtual size: 25KB

.data
Size: 1024B - Virtual size: 996B

.rsrc
Size: 149KB - Virtual size: 149KB

.reloc
Size: 3KB - Virtual size: 2KB