09d3b8d79393d59fc10a85967163f968

General

Target

09d3b8d79393d59fc10a85967163f968
Size

204KB
MD5

09d3b8d79393d59fc10a85967163f968
SHA1

c54943202618c1c4a91b6dcae2c2fdc6fc379173
SHA256

02fadbb1b2cf45bd2fa7698eb25245776e3bf94862734d1cb2ba0a7f3ded720e
SHA512

f664b5b90d2241bef7a5d823595cd3b434f0003f05f7b490dc090beb1342ce0ae380545c4b6cf5e827871bd735055d959981c3d3a9233c3d10a41c5d3c2b8144
SSDEEP

6144:eTXUw+5bmi8Z2I7k/e5GuzDy8IVf3AJl:eTXOwlf5vIVI3

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
09d3b8d79393d59fc10a85967163f968

Files

09d3b8d79393d59fc10a85967163f968
.exe windows:4 windows x86 arch:x86

409670d70b0c5692e57cc2e57e41ef2a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualAlloc
GetOEMCP
lstrlenW
GetLastError
GetProcAddress
ExitThread
LoadLibraryA
GetModuleHandleA
GetCommandLineA
ExitProcess
IsBadHugeReadPtr
IsBadReadPtr
LoadLibraryExA

user32

GetSysColor
GetMenuState
GetKeyboardLayoutNameA
GetScrollInfo
GetWindowDC
GetWindowLongW
GetSysColorBrush
GetKeyboardLayoutList
GetTopWindow
GetKeyboardState
GetSystemMenu
GetWindowLongA
GetKeyboardType
GetMenuItemInfoA
GetScrollPos
GetKeyNameTextA
GetParent
GetMenuItemCount
GetIconInfo
GetPropA
GetMenu
GetScrollRange
GetWindow
GetSubMenu
GetKeyState
GetMessagePos
GetMenuStringA
GetLastActivePopup
GetKeyboardLayout
GetMenuItemID

advapi32

GetUserNameA

Sections

CODE
Size: 160KB - Virtual size: 157KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

DATA
Size: 4KB - Virtual size: 89KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bdata
Size: 12KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.hdata
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

409670d70b0c5692e57cc2e57e41ef2a

Headers

File Characteristics

Imports

kernel32

user32

advapi32

Sections

CODE Size: 160KB - Virtual size: 157KB

.rdata Size: 4KB - Virtual size: 1KB

.data Size: 4KB - Virtual size: 2KB

DATA Size: 4KB - Virtual size: 89KB

.bdata Size: 12KB - Virtual size: 8KB

.hdata Size: 8KB - Virtual size: 5KB

.rsrc Size: 8KB - Virtual size: 7KB

CODE
Size: 160KB - Virtual size: 157KB

.rdata
Size: 4KB - Virtual size: 1KB

.data
Size: 4KB - Virtual size: 2KB

DATA
Size: 4KB - Virtual size: 89KB

.bdata
Size: 12KB - Virtual size: 8KB

.hdata
Size: 8KB - Virtual size: 5KB

.rsrc
Size: 8KB - Virtual size: 7KB