1765ead545ef867dfd7f8ad866763142

General

Target

1765ead545ef867dfd7f8ad866763142
Size

206KB
MD5

1765ead545ef867dfd7f8ad866763142
SHA1

a8ae1ca3ac212eda19ec101b7fb774a0b7954c03
SHA256

cff5a1d5ea4a1fe98f4945c6b38963bc9113b797765428a7c5ede726543afd01
SHA512

6addafeae3444777c656783718fb63ebf67297a2d780c98ec155c9ac6266320ef0e5b686e2ee9d2f52da1c920bc85047dba85a53c9cc6d4997b0a7ea087f4757
SSDEEP

6144:ZFrE+RrlHYssPWY+bKvyU5Dqm5Rmk5jggZaGICBs:0ovY+b6VemX58gUCe

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1765ead545ef867dfd7f8ad866763142

Files

1765ead545ef867dfd7f8ad866763142
.exe windows:4 windows x86 arch:x86

ccd32521504b156025cc084f63792486

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_DEBUG_STRIPPED

Imports

user32

ReleaseDC
OffsetRect
GetWindowLongA
EqualRect
DefWindowProcA
RealGetWindowClassA
InvalidateRect
UnionRect
IsWindow
SetWindowRgn
IsChild
EndPaint
UnregisterClassA
SetWindowLongA
GetDC
GetClientRect
CharNextA
ShowWindow
GetClassInfoExA
wsprintfA
SetWindowPos
GetKeyState
GetFocus
CallWindowProcA
IntersectRect
PtInRect
LoadCursorA
SetFocus
BeginPaint
RegisterClassExA
CreateWindowExA
GetParent
DestroyWindow

kernel32

GetCommandLineA
HeapDestroy
VirtualQuery
CreateFiber
HeapReAlloc
UnhandledExceptionFilter
ResumeThread
ExitProcess
LoadLibraryA
IsProcessorFeaturePresent
VirtualProtect
VirtualFree
EnumResourceNamesA
GetSystemInfo
HeapCreate
VirtualAlloc
TerminateProcess
RtlUnwind
GetLocaleInfoA
SetUnhandledExceptionFilter
InterlockedCompareExchange
SetThreadPriority
IsDebuggerPresent
HeapAlloc
GetProcAddress
GetACP
HeapSize
WriteFile

setupapi

SetupDiGetDeviceRegistryPropertyW
CMP_WaitNoPendingInstallEvents
CM_Get_DevNode_Status

Sections

.text
Size: 187KB - Virtual size: 186KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 228KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ccd32521504b156025cc084f63792486

Headers

File Characteristics

Imports

user32

kernel32

setupapi

Sections

.text Size: 187KB - Virtual size: 186KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 16KB - Virtual size: 15KB

.tls Size: 512B - Virtual size: 228KB

.text
Size: 187KB - Virtual size: 186KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 16KB - Virtual size: 15KB

.tls
Size: 512B - Virtual size: 228KB