02f5cfb9afbf19ed09225419d000d8b1

General

Target

02f5cfb9afbf19ed09225419d000d8b1
Size

144KB
MD5

02f5cfb9afbf19ed09225419d000d8b1
SHA1

13a3b8c6ca189429cba216e5dbf25c5c1f5720e6
SHA256

98cdd641d782a9b83134b8325609cc2f96c024544d705037f7dacaba4279aba3
SHA512

ea16e2f3e3bc80b5f16a253c01bf6c86e3b0cfa1e66ce12e6d229ea702fbc362b8cb114afadd8103360e2fe138bae0790c73780b030cc2ad60b0f4f3efa38572
SSDEEP

3072:WOPtcIjXIUtkH98l/1jIicy3CT2EiTV9n4VrbVd1NnLkv3PWK:WGqYXIUojiN3CT2n7noHHYr

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
02f5cfb9afbf19ed09225419d000d8b1

Files

02f5cfb9afbf19ed09225419d000d8b1
.exe windows:6 windows x86 arch:x86

887483d3d38497834b14fb66f0e4d628

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LocalFree
GetTickCount
GetCurrentProcess
LocalAlloc
GetCurrentProcess
GetTickCount
GetACP
GetProcessHeap
GetModuleFileNameA
FindResourceA
LocalFree
VirtualFree
FormatMessageW
GetTickCount
GetTickCount
GetModuleHandleW
GetCurrentThreadId
SetUnhandledExceptionFilter
GetCurrentProcessId
GetModuleHandleA
GetModuleHandleA
GetCurrentProcess
QueryPerformanceCounter
SetEvent
GetProcessHeap
SetEvent
LocalAlloc
SetEvent
GetModuleHandleW
LocalAlloc

ntdll

NtAllocateVirtualMemory

user32

KillTimer
BeginPaint
EndPaint
GetDlgCtrlID
SetWindowPos
GetCursorPos
LoadImageW
SetWindowPos
SetWindowPos
GetDlgCtrlID
PostMessageW
IsDlgButtonChecked
MoveWindow
GetSystemMenu
EndPaint
IsDlgButtonChecked
GetSystemMetrics
SendDlgItemMessageW
DialogBoxParamW
DialogBoxParamW
MoveWindow
IsDlgButtonChecked
DialogBoxParamW
GetSystemMenu
KillTimer
LoadAcceleratorsW
CheckDlgButton
DialogBoxParamW
DialogBoxParamW
GetSysColor
MoveWindow
GetSystemMetrics
GetCursorPos
GetMessageW
DialogBoxParamW
IsDlgButtonChecked

Sections

.text
Size: 9KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.xdata
Size: 130KB - Virtual size: 132KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 152KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

887483d3d38497834b14fb66f0e4d628

Headers

File Characteristics

Imports

kernel32

ntdll

user32

Sections

.text Size: 9KB - Virtual size: 12KB

.data Size: 2KB - Virtual size: 4KB

.xdata Size: 130KB - Virtual size: 132KB

.rsrc Size: 2KB - Virtual size: 152KB

.text
Size: 9KB - Virtual size: 12KB

.data
Size: 2KB - Virtual size: 4KB

.xdata
Size: 130KB - Virtual size: 132KB

.rsrc
Size: 2KB - Virtual size: 152KB