12a0c5c66f0eb1a6dbb2ca70c1276060

Sharing

Copy URL

Twitter E-mail

General

Target

12a0c5c66f0eb1a6dbb2ca70c1276060
Size

141KB
MD5

12a0c5c66f0eb1a6dbb2ca70c1276060
SHA1

a6dd0e618d6e814f411b65ffc57084cb55d2f78c
SHA256

7dee01eed87c6ab2a908460c6f42d1776df57c9bb41940d44ec97e47f103d82d
SHA512

db71f2842cf0bea10e44c09c3b589b49d4700fc1dd8c488cab39b22129cb8c4257a387f7fa17a52b972d57d7f43d03c0425db89e6728a4cf68f669706562ef5a
SSDEEP

1536:MWnuQ8bjKR0BqSJWXwf1vSc4OyKbHsawSWCKla8OdKOghxcsp49h7Jg+aNQaXuBu:MCSjRk8vN2jhNKHYNQwu0H1QeCWHL

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
12a0c5c66f0eb1a6dbb2ca70c1276060

Files

12a0c5c66f0eb1a6dbb2ca70c1276060
.exe windows:4 windows x86 arch:x86

2168105d9f459b7f8f447069c85727d2

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

TranslateMessage
InsertMenuA
wsprintfA
SetWindowLongA
UnregisterClassW
LoadIconA
GetForegroundWindow
CharPrevW
SetDlgItemTextA
GetWindowTextW
GetProcessWindowStation
GetCursorPos
SetCursor
GetWindowDC
IsRectEmpty
CallWindowProcA
IsIconic
EndPaint
RedrawWindow
OffsetRect
RegisterClassExA
GetAsyncKeyState
SendMessageA
RegisterWindowMessageW
GetKeyState
DestroyIcon
GetMenuItemCount

kernel32

SetLastError
HeapCreate
WaitForSingleObject
ExitProcess
GetCommandLineA
HeapReAlloc
GetCPInfo
FindResourceW
OpenMutexA
GetExitCodeThread
OpenMutexW
GetOEMCP
GetCurrentThreadId
GetExitCodeProcess
SystemTimeToFileTime
GetCurrentProcessId
GetDriveTypeA
GetModuleHandleW
FreeLibrary
FindResourceA
SetErrorMode
GetThreadPriority
GetStringTypeW
GetSystemTimeAsFileTime
OpenEventA
SetThreadPriority
ReleaseMutex
UnmapViewOfFile
IsBadWritePtr
GetACP
LCMapStringA
lstrcatW
Sleep
lstrcpynW
TlsGetValue
GetTickCount
EnterCriticalSection
GetThreadLocale
VirtualAlloc
VirtualFree
GetCurrentProcess
OutputDebugStringW
GetLastError
GetCurrentDirectoryW
HeapSize
GetProcessHeap
TlsSetValue

Sections

.text
Size: 131KB - Virtual size: 131KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 512B - Virtual size: 68B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.textbss
Size: 512B - Virtual size: 343B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2168105d9f459b7f8f447069c85727d2

Headers

DLL Characteristics

File Characteristics

Imports

user32

kernel32

Sections

.text Size: 131KB - Virtual size: 131KB

DATA Size: 512B - Virtual size: 68B

.tls Size: 512B - Virtual size: 36KB

.textbss Size: 512B - Virtual size: 343B

.rsrc Size: 7KB - Virtual size: 6KB

.reloc Size: 512B - Virtual size: 24B

.text
Size: 131KB - Virtual size: 131KB

DATA
Size: 512B - Virtual size: 68B

.tls
Size: 512B - Virtual size: 36KB

.textbss
Size: 512B - Virtual size: 343B

.rsrc
Size: 7KB - Virtual size: 6KB

.reloc
Size: 512B - Virtual size: 24B