016dd265ed12b8c21ccf52c4a887c7f9

Sharing

Copy URL Twitter E-mail

General

Target

016dd265ed12b8c21ccf52c4a887c7f9
Size

174KB
MD5

016dd265ed12b8c21ccf52c4a887c7f9
SHA1

644a3d581a901977da3b6efc553865ef3fda647c
SHA256

e76c9d1f2d06eb962b9dcc9dd2508ff30ee2223844e1ace2e8f39ea0a1a2ad9a
SHA512

b146450b2e47c7fb9057eb4a85d18c7040962e706918115c79bea9d9a3e825882d56c37945f43af47962875dbba624277ee3b250a9d2f187c81d26f465aa9d9e
SSDEEP

3072:O/MWN54iNYywxF/WgQOF00IHQ7IecytypTG8FLFXmPwXALuAkzP0bPS41hH2:yMWbwndlSmIDNnMwTXyq2hW

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
016dd265ed12b8c21ccf52c4a887c7f9

Files

016dd265ed12b8c21ccf52c4a887c7f9
.exe windows:4 windows x86 arch:x86

529382cf6082c0eb914a7d92cc64658c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_DEBUG_STRIPPED

Imports

gdi32

SetBkMode
GetDeviceCaps
CreateSolidBrush
TextOutA
EnumFontFamiliesExA
DeleteObject
GetTextExtentPoint32A
SelectObject
SetTextColor
RestoreDC
BitBlt
SaveDC
DeleteMetaFile
Rectangle
CreateRectRgn
CreateCompatibleDC
GetObjectA
DeleteDC
CreateFontIndirectA
GetStockObject
CreateCompatibleBitmap

version

GetFileVersionInfoA
VerQueryValueA
GetFileVersionInfoSizeA

shell32

SHGetMalloc
SHGetPathFromIDListA
SHGetSpecialFolderLocation

advapi32

RegCloseKey
RegQueryValueExA
RegCreateKeyExA
RegDeleteKeyA
RegOpenKeyA
RegOpenKeyExA
RegEnumKeyExA
RegSetValueExA

kernel32

SetTapeParameters
GetVersion
ClearCommError
FindClose
Sleep
InterlockedExchange
EnumResourceNamesA
GetCurrentProcessId
GetLocalTime
ExitProcess
GetWindowsDirectoryA
FindFirstFileA

user32

FillRect
MoveWindow
ReleaseCapture
GetWindowInfo
ReleaseDC
GetWindowLongA
IsWindow
SetWindowLongA
SetWindowPos
GetDC
GetSysColor
SetCursor
LoadCursorA
GetDlgItem
SetCapture

winmm

mciSendCommandA
sndPlaySoundA

ole32

CoTaskMemFree
ProgIDFromCLSID
StringFromCLSID

oleacc

LresultFromObject
CreateStdAccessibleObject

Sections

.text
Size: 145KB - Virtual size: 144KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 25KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.lib
Size: 512B - Virtual size: 76KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

529382cf6082c0eb914a7d92cc64658c

Headers

File Characteristics

Imports

gdi32

version

shell32

advapi32

kernel32

user32

winmm

ole32

oleacc

Sections

.text Size: 145KB - Virtual size: 144KB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 25KB - Virtual size: 25KB

.lib Size: 512B - Virtual size: 76KB

.text
Size: 145KB - Virtual size: 144KB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 25KB - Virtual size: 25KB

.lib
Size: 512B - Virtual size: 76KB