1eba94bcef2d65c49c3e435e7cbb559f

Sharing

Copy URL Twitter E-mail

General

Target

1eba94bcef2d65c49c3e435e7cbb559f
Size

89KB
MD5

1eba94bcef2d65c49c3e435e7cbb559f
SHA1

b52a629e17035922077a53bdd4dbf2750022a4f0
SHA256

cfe7aa3c4af132acb12e2cc2fbd88c31e5b4a30e91150b85024df0875c9cc134
SHA512

49b77050e4df22a9bbedc08f495264aa0c5f1baf90fc0514559f2d216f9e7ee697db10873908fda95a045b593f85cbb1a022d4cb0f8067c0ed309f3baa29c133
SSDEEP

768:JCFvsttr/Jui/T654XaxKGuDHlNtA0dQyMjTCo0YPKPXGWrri4KWe1w6u23oWOpy:H8CXTpayMVsXGW/fxWOpavuKY

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1eba94bcef2d65c49c3e435e7cbb559f

Files

1eba94bcef2d65c49c3e435e7cbb559f
.exe windows:4 windows x86 arch:x86

c2798f59a1b0e9d6a0055a905edf7728

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

DrawEdge
IsDialogMessageA
DrawFrameControl
IsWindowVisible
CheckMenuItem
SetWindowPos
DispatchMessageA
CharLowerA
GetKeyNameTextA
CharToOemA
GetDesktopWindow
GetIconInfo
CreateMenu
GetMenuStringA
GetMenuItemCount
DrawMenuBar
GetKeyState
GetMenu
DrawIcon
CreateWindowExA
CreatePopupMenu
GetFocus
GetParent
GetDC
EndPaint
DefWindowProcA
IsChild
GetMenuItemInfoA
EqualRect
GetForegroundWindow
MessageBoxA
GetSysColor
SetWindowTextA
EnumWindows
SetTimer
GetSysColorBrush
GetActiveWindow
CallNextHookEx
FillRect

kernel32

GetStdHandle
CreateEventA
ExitProcess
FindResourceA
GetFileType
MoveFileA
GetThreadLocale
Sleep
InitializeCriticalSection
GetTickCount
GlobalAddAtomA
GetModuleFileNameA
MoveFileExA
GetCurrentThreadId
WideCharToMultiByte
GetEnvironmentStrings
GetDateFormatA
LockResource
GetVersion
GetModuleHandleA
GlobalAlloc
GetCurrentThread
GetCommandLineA
SetLastError
LoadLibraryA
ResetEvent
ReadFile
SetErrorMode
VirtualFree
lstrcatA
GetOEMCP
lstrcmpA
LocalFree
VirtualAlloc
HeapFree
CreateThread
EnterCriticalSection
LoadResource
FormatMessageA
GetACP
WaitForSingleObject
lstrlenA
GetProcessHeap
CloseHandle
RaiseException
GetVersionExA
GetSystemDefaultLangID
ExitThread
GetUserDefaultLCID
LoadLibraryExA
MulDiv
GetCurrentProcessId
GetFileAttributesA
HeapAlloc
GetStartupInfoA
SetEndOfFile
SetFilePointer
DeleteCriticalSection

Sections

.text
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

DATA
Size: 69KB - Virtual size: 88KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.init
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 571B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c2798f59a1b0e9d6a0055a905edf7728

Headers

File Characteristics

Imports

user32

kernel32

Sections

.text Size: 11KB - Virtual size: 10KB

.rdata Size: 5KB - Virtual size: 5KB

DATA Size: 69KB - Virtual size: 88KB

.init Size: 2KB - Virtual size: 1KB

.rsrc Size: 1024B - Virtual size: 571B

.text
Size: 11KB - Virtual size: 10KB

.rdata
Size: 5KB - Virtual size: 5KB

DATA
Size: 69KB - Virtual size: 88KB

.init
Size: 2KB - Virtual size: 1KB

.rsrc
Size: 1024B - Virtual size: 571B