141c486bc12b5314fe8c2aa4c375e2d8

General

Target

141c486bc12b5314fe8c2aa4c375e2d8
Size

68KB
MD5

141c486bc12b5314fe8c2aa4c375e2d8
SHA1

2e16453f23e48b52a94c26b3f0c2cb53d77758c5
SHA256

2cb982bb0d2da9a148b09d1a9cbf06bb177ac00272a08a6b1989c57b3368ecd3
SHA512

7e05fd4c838b784a32cb780ecec6802b302004d6f3e9d62d15bc7fcd49700d9a611a812482453811b7f90dced67fe4c2656bd2f2d4ad53aa8d4b3db0bc001195
SSDEEP

1536:fTzuf3gpv9SFXGXZ54UEJjDiqFi2tgcFs7RxwRfgyLbRa:7Cm4Xw54hSj+gcFUcRfgKa

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
141c486bc12b5314fe8c2aa4c375e2d8

Files

141c486bc12b5314fe8c2aa4c375e2d8
.exe windows:4 windows x86 arch:x86

8ce25591c62791b932cf78642b709dec

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCPInfo
OpenFileMappingA
CopyFileExW
GetLastError
Sleep
GetComputerNameA
CreateDirectoryA
SetLastError
DeleteFileA
GlobalFree
GetFileTime
ReadFile
FindFirstFileA
WriteFile
CreateProcessA
GetCommandLineA
GetFileSize
CopyFileA
GetStdHandle
CopyFileW

advapi32

RegQueryValueA
RegQueryInfoKeyW
RegOpenKeyW
RegReplaceKeyW
RegEnumValueW
RegQueryValueExA
RegCreateKeyW
RegEnumKeyW
RegOpenKeyExA
RegQueryInfoKeyA
RegDeleteKeyW
RegOpenKeyA
RegQueryValueW
RegCreateKeyExA
RegOpenKeyExW
RegCreateKeyExW
RegLoadKeyW
RegEnumKeyExW
RegLoadKeyA
RegReplaceKeyA

user32

IsMenu
AppendMenuW
IsWindow
AlignRects
DialogBoxParamW
InsertMenuA
GetDC
CopyIcon
CopyRect
DrawIcon
DrawIconEx
GetWindowTextA
GetMenu
GetFocus
LoadMenuA
GetWindowTextLengthA
AppendMenuA
DialogBoxParamA

comctl32

ImageList_LoadImage
ImageList_GetIconSize
ImageList_DragShowNolock
ImageList_LoadImageW
ImageList_DrawEx
ImageList_GetImageInfo
ImageList_GetDragImage
ImageList_GetImageRect
ImageList_DragEnter
ImageList_GetIcon
ImageList_Draw
ImageList_Copy
ImageList_ReplaceIcon
ImageList_Merge
ImageList_Read
ImageList_LoadImageA
InitCommonControls

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 58KB - Virtual size: 173KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: - Virtual size: 1KB

IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8ce25591c62791b932cf78642b709dec

Headers

File Characteristics

Imports

kernel32

advapi32

user32

comctl32

Sections

.text Size: 4KB - Virtual size: 3KB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 58KB - Virtual size: 173KB

.rsrc Size: 2KB - Virtual size: 2KB

.reloc Size: - Virtual size: 1KB

.text
Size: 4KB - Virtual size: 3KB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 58KB - Virtual size: 173KB

.rsrc
Size: 2KB - Virtual size: 2KB

.reloc
Size: - Virtual size: 1KB