1b17434563aef22ebe37e7f05a39e355

Sharing

Copy URL Twitter E-mail

General

Target

1b17434563aef22ebe37e7f05a39e355
Size

124KB
MD5

1b17434563aef22ebe37e7f05a39e355
SHA1

445aa4568eca58a92fb3b96cedb06a76b4cfb28a
SHA256

8178156a67b5509e2d5678fdf5235cca4a6b789e27d8887403fd86ac682fbbe0
SHA512

09b0e047aac24c4417af71936b537f7dbf6f07d8fb133add6c0b64250b589cba956738fcc5e3f98a71ca27ea316f3da6e5f96f1f2aa24e5928fa52ed23ef28f1
SSDEEP

1536:vj8W7ho0CrJflnfEY2GFEKkzThRLJYHfH7lRuNGj3q7VoagHy:r7CtrJfhaKkzlRlYv7lReKa7Voa

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1b17434563aef22ebe37e7f05a39e355

Files

1b17434563aef22ebe37e7f05a39e355
.exe windows:4 windows x86 arch:x86

2a488700ca9b31b1b257e6e355cc8020

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegDeleteValueA
RegCreateKeyW
RegDeleteKeyA
RegGetKeySecurity
RegQueryValueW
RegQueryInfoKeyW
RegOpenKeyExA
RegQueryValueA
RegFlushKey
RegEnumKeyW
RegReplaceKeyW
RegQueryValueExW
RegReplaceKeyA
RegLoadKeyW
RegEnumKeyA
RegEnumValueW
RegEnumKeyExW
RegQueryInfoKeyA
RegQueryValueExA
RegDeleteValueW
RegOpenKeyExW
RegEnumValueA
RegDeleteKeyW

user32

GetFocus
GetMenu
AlignRects
DrawTextW
DialogBoxParamW
DrawIconEx
IsMenu
LoadCursorA
GetWindowTextLengthA
CloseWindow
EndDialog
InsertMenuA
BlockInput
GetDC
GetWindowTextA
CopyRect
DrawIcon
LoadMenuA
CreateIcon
AlignRects
CloseWindow
DialogBoxParamW
DrawIconEx
GetWindowTextA
GetMenu
AppendMenuA
CreateIcon
IsWindow
CopyRect
EndDialog
GetDC
CalcMenuBar
CopyImage
DrawTextW
DrawIcon
InsertMenuA
DrawTextA
GetCursor
AppendMenuW
GetFocus
LoadCursorA
BlockInput
DialogBoxParamA
CopyIcon
DrawIcon
AppendMenuW
DialogBoxParamW
CopyRect
GetCursor
InsertMenuA
DrawTextA
CloseWindow
BlockInput
AppendMenuA
GetDC
IsMenu
EndDialog
GetWindowTextLengthA
AlignRects
IsWindow
CopyImage
GetDlgItem
GetMenu

gdi32

AddFontResourceTracking
CreateSolidBrush
ClearBitmapAttributes
GetClipBox
AddFontResourceExW
SetTextColor
ExtTextOutA
AddFontMemResourceEx
GetBrushOrgEx
CancelDC
GetCurrentPositionEx
ClearBrushAttributes
CloseFigure
GetPixel
CloseMetaFile
BeginPath
AddFontResourceW
GetBitmapBits
GetDCOrgEx
CopyMetaFileA
DeleteObject

comctl32

ImageList_GetImageRect
ImageList_Replace
ImageList_Merge
ImageList_DragShowNolock
ImageList_Draw
ImageList_GetImageCount
ImageList_Destroy
ImageList_EndDrag
ImageList_BeginDrag
ImageList_Copy
ImageList_DrawEx
ImageList_GetIconSize
ImageList_Remove
ImageList_LoadImageW
ImageList_GetDragImage
ImageList_AddMasked
ImageList_GetIcon
ImageList_LoadImageA
ImageList_Read

Sections

.text
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 72KB - Virtual size: 5.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 4KB - Virtual size: 63B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 4KB - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_MEM_READ

.rsrc
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2a488700ca9b31b1b257e6e355cc8020

Headers

File Characteristics

Imports

advapi32

user32

gdi32

comctl32

Sections

.text Size: 8KB - Virtual size: 6KB

.data Size: 72KB - Virtual size: 5.0MB

.tls Size: 4KB - Virtual size: 63B

.rdata Size: 4KB - Virtual size: 24B

.idata Size: 8KB - Virtual size: 4KB

.reloc Size: 4KB - Virtual size: 1KB

.rsrc Size: 20KB - Virtual size: 19KB

.text
Size: 8KB - Virtual size: 6KB

.data
Size: 72KB - Virtual size: 5.0MB

.tls
Size: 4KB - Virtual size: 63B

.rdata
Size: 4KB - Virtual size: 24B

.idata
Size: 8KB - Virtual size: 4KB

.reloc
Size: 4KB - Virtual size: 1KB

.rsrc
Size: 20KB - Virtual size: 19KB