3d8b1c4f2b0975276d91ae483114018f

General

Target

3d8b1c4f2b0975276d91ae483114018f
Size

8KB
MD5

3d8b1c4f2b0975276d91ae483114018f
SHA1

3bf943cfa13bbd4c0e1f961bf599b30d163155cf
SHA256

7eb23e1fa4cdcc0d7dec67bc4c6aa0feafe86578a6f6d8146a668251c1688e97
SHA512

9081889c0d0a2c18c7ff8a1a9bba246c686b6a58a43955cb806416fc9f01b1115d8829b8a222c447cd8428a27c6b2ff29dc41b8fee1f42fea0833bb8c7402f3a
SSDEEP

96:oem1DoSMDbN/kwUgEJw5UrAhUu/vaB9UgU1lMcmu4f48SdDocjYKJIKC:DmVoVNCPmSrmU37helMFu4f4hdDocCKC

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3d8b1c4f2b0975276d91ae483114018f

Files

3d8b1c4f2b0975276d91ae483114018f
.exe windows:1 windows x86 arch:x86

61d833bdfb3517ea5260a6588152a34c

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

credui

CredUIPromptForCredentialsA

kernel32

FormatMessageA
FreeLibrary
GetComputerNameExA
GetCurrentProcess
GetCurrentProcessId
GetLastError
GetModuleHandleA
GetProcAddress
CloseHandle
GetVersionExA
LoadLibraryA
LocalAlloc
LocalFree
RtlUnwind
CreateThread

user32

FindWindowA
SystemParametersInfoA
GetWindowThreadProcessId
SetFocus
SetActiveWindow
SetForegroundWindow
GetForegroundWindow
LoadCursorA
SetTimer
KillTimer
MessageBoxA
GetMessageA
TranslateMessage
DispatchMessageA
RegisterHotKey
UnregisterHotKey
SendMessageA
keybd_event
mouse_event
RegisterClassA
PostQuitMessage
CreateWindowExA
SetWindowPos
BringWindowToTop
SetLayeredWindowAttributes
DefWindowProcA

gdi32

CreateSolidBrush

advapi32

GetUserNameA
LogonUserA
RegCreateKeyExA
RegCloseKey
RegOpenKeyExA
RegQueryValueExA
RegSetValueExA

comctl32

InitCommonControls

crtdll

__GetMainArgs
exit
memcpy
memset
raise
signal
sprintf
strchr
strcmp

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 176B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 328B - Virtual size: 328B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 616B - Virtual size: 616B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

61d833bdfb3517ea5260a6588152a34c

Headers

File Characteristics

Imports

credui

kernel32

user32

gdi32

advapi32

comctl32

crtdll

Sections

.text Size: 3KB - Virtual size: 3KB

.bss Size: - Virtual size: 176B

.data Size: 328B - Virtual size: 328B

.idata Size: 2KB - Virtual size: 2KB

.rsrc Size: 616B - Virtual size: 616B

.text
Size: 3KB - Virtual size: 3KB

.bss
Size: - Virtual size: 176B

.data
Size: 328B - Virtual size: 328B

.idata
Size: 2KB - Virtual size: 2KB

.rsrc
Size: 616B - Virtual size: 616B