1099e5ee4a4e4a6596f41585a8d1c567

General

Target

1099e5ee4a4e4a6596f41585a8d1c567
Size

239KB
MD5

1099e5ee4a4e4a6596f41585a8d1c567
SHA1

50248fa211dd655fcd30f640e8471bb4379b2efc
SHA256

eb04caa1270b6df17af80c14be77c129c136e2b72a84588551f8fb79c428bbf8
SHA512

0ab9ce8a470f10f4587b4af876e643c3d7062d9f2b8757a78791d8ee7171ba018c39440357b9e998822a2f4038fad9bcbc824e1365160c6397f9617fef31a0fb
SSDEEP

6144:8v4O8BfsqXZbUB/YBT5nCXO6ixp272ngx9z:8q0GoByMO3iFvz

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1099e5ee4a4e4a6596f41585a8d1c567

Files

1099e5ee4a4e4a6596f41585a8d1c567
.dll windows:4 windows x86 arch:x86

46adf665dccc1b437551869233d14403

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

user32

MessageBoxA
GetSysColorBrush
OffsetRect
GetCursor
GetActiveWindow
CheckMenuItem
IsDialogMessageW
SetScrollRange
FindWindowA
GetWindowLongW
IsDialogMessageA
GetFocus
GetMenuItemCount
DrawIcon
ReleaseCapture
IsChild
GetForegroundWindow

kernel32

GlobalAddAtomA
ReadFile
SetLastError
lstrcatA
RaiseException
GetUserDefaultLCID
FindFirstFileA
GetFullPathNameA
lstrcmpiA
GetFileSize
GetVersionExA
FormatMessageA
GetCurrentThreadId
lstrlenA
GetEnvironmentStrings
GetSystemDefaultLangID
GetThreadLocale
ResetEvent
ExitThread
ExitProcess
WideCharToMultiByte
GetDiskFreeSpaceA
InitializeCriticalSection
GetStringTypeA
FreeLibrary
EnumCalendarInfoA
SetEvent
SizeofResource
VirtualAllocEx
DeleteCriticalSection
LocalAlloc
VirtualAlloc
HeapDestroy
GetCurrentProcessId
GetModuleHandleA
SetErrorMode
GetProcAddress
GetCommandLineA
LocalFree
GetStdHandle
MoveFileExA
LoadLibraryA
GetStartupInfoA
LoadLibraryExA
CreateEventA
SetFilePointer
lstrcmpA
GetTickCount
HeapAlloc
MoveFileA
CreateFileA
GetFileType
GetFileAttributesA
MulDiv
CompareStringA

Sections

.text
Size: 52KB - Virtual size: 51KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 172KB - Virtual size: 307KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 608B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

46adf665dccc1b437551869233d14403

Headers

File Characteristics

Imports

user32

kernel32

Sections

.text Size: 52KB - Virtual size: 51KB

.data Size: 172KB - Virtual size: 307KB

.idata Size: 2KB - Virtual size: 1KB

.rsrc Size: 10KB - Virtual size: 10KB

.reloc Size: 1024B - Virtual size: 608B

.text
Size: 52KB - Virtual size: 51KB

.data
Size: 172KB - Virtual size: 307KB

.idata
Size: 2KB - Virtual size: 1KB

.rsrc
Size: 10KB - Virtual size: 10KB

.reloc
Size: 1024B - Virtual size: 608B