00a4a5c5f6cf74c30ad2336b436d7b0c

Sharing

Copy URL Twitter E-mail

General

Target

00a4a5c5f6cf74c30ad2336b436d7b0c
Size

99KB
MD5

00a4a5c5f6cf74c30ad2336b436d7b0c
SHA1

535131af31857f5b3e58a95bec1b25e5e5ad9f19
SHA256

55ae0440be3a1653586eb493c858e3dada56ebc1cc46c2e7d9f1b940e2eeded4
SHA512

057416b267948e5313732d9e69252cf5dd51ad9c3ab44353087c12643cca9a9e084ba0304deeb0efbe8d45e4c8790dd20b258aaedda3f714412da2b135d1bdb7
SSDEEP

1536:rJ90BEtzSVyAfiUFmr+m8GdFIdH2qocKRVzcMXDl+Fi6Gah1qHeeGQ:jUE0Vnmr6GLIV2rcKfcexJ6GiZev

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
00a4a5c5f6cf74c30ad2336b436d7b0c

Files

00a4a5c5f6cf74c30ad2336b436d7b0c
.exe windows:4 windows x86 arch:x86

727edf2654e993095902fea0269657c6

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

sin
malloc
memmove
strcmp

kernel32

LoadLibraryExA
VirtualAllocEx
GetCurrentProcess
GetACP
GetModuleHandleA
ExitProcess
ExitThread

gdi32

CreateCompatibleBitmap

version

GetFileVersionInfoA
GetFileVersionInfoSizeA

comdlg32

GetOpenFileNameA

advapi32

RegOpenKeyA
RegCreateKeyExA
RegDeleteValueA

user32

EndPaint
IsMenu
SetTimer
DrawIcon
CreateMenu
EqualRect
BeginDeferWindowPos
CharToOemA
DispatchMessageW
GetSysColor
GetSysColorBrush
FillRect
EnumThreadWindows
DeferWindowPos
RegisterClassA
SetWindowLongA
GetMenuItemCount
GetClipboardData
SetWindowPos
GetFocus
EnableScrollBar
DrawEdge
TrackPopupMenu
CharLowerBuffA
CharNextA
GetParent
GetDlgItem
DrawIconEx
GetScrollPos
ClientToScreen
GetScrollRange
GetWindowTextA
GetActiveWindow
GetDCEx
CheckMenuItem
EndDeferWindowPos
SetWindowTextA
ShowScrollBar
IsWindowEnabled
GetClientRect
DefWindowProcA
DrawTextA
BeginPaint
GetKeyNameTextA
GetWindow
EnableWindow
EnumChildWindows
IsChild
DispatchMessageA
GetMenu
GetMenuItemInfoA

shell32

SHGetFolderPathA
SHGetDesktopFolder
SHGetDiskFreeSpaceA
SHGetSpecialFolderLocation

comctl32

ImageList_Draw
ImageList_Add
ImageList_Read
ImageList_Write
ImageList_GetBkColor
ImageList_Remove
ImageList_DrawEx
ImageList_Create
ImageList_Destroy

Sections

.text
Size: 49KB - Virtual size: 48KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.tls
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.init
Size: 45KB - Virtual size: 45KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

INIT
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

727edf2654e993095902fea0269657c6

Headers

File Characteristics

Imports

msvcrt

kernel32

gdi32

version

comdlg32

advapi32

user32

shell32

comctl32

Sections

.text Size: 49KB - Virtual size: 48KB

.tls Size: 2KB - Virtual size: 2KB

.init Size: 45KB - Virtual size: 45KB

INIT Size: 1KB - Virtual size: 1KB

.text
Size: 49KB - Virtual size: 48KB

.tls
Size: 2KB - Virtual size: 2KB

.init
Size: 45KB - Virtual size: 45KB

INIT
Size: 1KB - Virtual size: 1KB