084e3940066c81b621cf60dddf9b114d

General

Target

084e3940066c81b621cf60dddf9b114d
Size

48KB
MD5

084e3940066c81b621cf60dddf9b114d
SHA1

3ff162faa60c433c6734e1a3bd15cc974c7fa7f3
SHA256

e3396534ccbe0649b0d8130d64e3e68f06fc18fe1cd8f8acd444ff04403cfdc2
SHA512

245f9c3789f0e7d19c3efd7178c8d0934fc9862893ae124bdcccee1dd8d4a033530e0dbad2cc4fd3d6ea608e17508a7e961685c66a54b153c8ed1acff3c4737e
SSDEEP

768:GCwUR8S+ibLNRWn6shqeV0XZ2/PMLeQ69+x6+zEui:GPO8RiV+JV6rer+xHz

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
084e3940066c81b621cf60dddf9b114d

Files

084e3940066c81b621cf60dddf9b114d
.exe windows:4 windows x86 arch:x86

b47370b31f439f28ef7cdeb33e3b49eb

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
EnterCriticalSection
EnumResourceTypesA
ExitProcess
FlushFileBuffers
GetACP
GetCommandLineA
GetDateFormatA
GetLocalTime
GetModuleHandleA
GetOEMCP
GetStartupInfoA
InitializeCriticalSection
RtlUnwind
SetEndOfFile
SetUnhandledExceptionFilter
lstrcatA
lstrlenA

user32

GetDC
FillRect
EqualRect
EndDeferWindowPos
GetMessageA
DefDlgProcA
CreateMenu
CreateDialogIndirectParamA
ChangeMenuA
IsCharUpperA
LoadImageA
DestroyIcon

advapi32

RegOpenKeyExA
RegEnumKeyA
LsaClose
LsaCreateSecret
LsaCreateTrustedDomain
LsaDelete
LsaDeleteTrustedDomain
LsaEnumerateAccounts
LsaEnumerateAccountsWithUserRight
LsaEnumeratePrivileges
LsaEnumeratePrivilegesOfAccount
LsaEnumerateTrustedDomainsEx
LsaFreeMemory
LsaGetSystemAccessAccount
LsaGetUserName
LsaLookupNames
LsaLookupPrivilegeDisplayName

msvbvm60

__vbaFileSeek
__vbaDerefAry1
__vbaCyUI1
__vbaCyForInit
__vbaCyFix
__vbaCyAdd
__vbaCastObjVar
__vbaAryVarVarg
__vbaAryDestruct

dinput

DirectInputCreateEx
DirectInputCreateA
DirectInputCreateW

Exports

Exports

Rmu
Txwrsxvrzac
Ufrrnebj
Zf

Sections

.text
Size: 13KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 14KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 9KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b47370b31f439f28ef7cdeb33e3b49eb

Headers

File Characteristics

Imports

kernel32

user32

advapi32

msvbvm60

dinput

Exports

Exports

Sections

.text Size: 13KB - Virtual size: 16KB

.rdata Size: 14KB - Virtual size: 16KB

.data Size: 8KB - Virtual size: 12KB

.idata Size: 2KB - Virtual size: 4KB

.rsrc Size: 9KB - Virtual size: 12KB

.text
Size: 13KB - Virtual size: 16KB

.rdata
Size: 14KB - Virtual size: 16KB

.data
Size: 8KB - Virtual size: 12KB

.idata
Size: 2KB - Virtual size: 4KB

.rsrc
Size: 9KB - Virtual size: 12KB