09f4ec49e214c58c41ac55c01291dc51

Sharing

Copy URL

Twitter E-mail

General

Target

09f4ec49e214c58c41ac55c01291dc51
Size

86KB
MD5

09f4ec49e214c58c41ac55c01291dc51
SHA1

326081c19983392526dd7afba5ba1b3148c6da33
SHA256

cb70e988633b75031cbc4268398b15ae4abcb7aab1f0d3131217d8f99871e9f8
SHA512

33993bf78ed2e573de24682a268e4d9e9797385d49edf66819f44894c10d9202d915043ff7375a9d33d7e7062fccc9008557f4f6a995e348a06ed11d49822ad7
SSDEEP

1536:D7RGHdp0J/OWnS3WD70aYrA1VaAKF/Amip/th0joad3kjFi8/a5f:wHdeJhnS3vDrA1FKOTeou3+iJ5f

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
09f4ec49e214c58c41ac55c01291dc51

Files

09f4ec49e214c58c41ac55c01291dc51
.exe windows:4 windows x86 arch:x86

d4b51b8b9be1941ac39c5d116f323db2

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetClipboardData
GetCursor
EndDeferWindowPos
CallWindowProcA
GetMenu
GetClassInfoA
FindWindowA
SetCursor
DrawMenuBar
DefMDIChildProcA
GetDCEx
ShowScrollBar
GetDlgItem
CallNextHookEx
DefFrameProcA
GetWindow
IsWindowVisible
CharNextA
SetWindowTextA

ole32

CreateOleAdviseHolder
CLSIDFromProgID

shell32

SHGetSpecialFolderLocation
DragQueryFileA
SHGetDesktopFolder
SHGetFileInfoA

advapi32

RegEnumKeyExA
RegCreateKeyExA
RegEnumValueA
RegOpenKeyA

msvcrt

wcsncmp
swprintf
malloc
time
_acmdln
memmove
memcpy
tolower
sqrt
clock
exit

kernel32

ExitProcess
GetCurrentThread
VirtualAllocEx
ExitThread
GetACP
GetCommandLineA
Sleep
CreateThread
WideCharToMultiByte
VirtualQuery
LoadLibraryA
GetUserDefaultLCID
LoadResource
EnumCalendarInfoA
GetCurrentThreadId

version

GetFileVersionInfoSizeA

Sections

.edata
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 48KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

DATA
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 296B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: 1024B - Virtual size: 786B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 571B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d4b51b8b9be1941ac39c5d116f323db2

Headers

File Characteristics

Imports

user32

ole32

shell32

advapi32

msvcrt

kernel32

version

Sections

.edata Size: 28KB - Virtual size: 27KB

.data Size: 48KB - Virtual size: 48KB

DATA Size: 6KB - Virtual size: 6KB

.idata Size: 512B - Virtual size: 296B

.bss Size: 1024B - Virtual size: 786B

.rsrc Size: 1024B - Virtual size: 571B

.edata
Size: 28KB - Virtual size: 27KB

.data
Size: 48KB - Virtual size: 48KB

DATA
Size: 6KB - Virtual size: 6KB

.idata
Size: 512B - Virtual size: 296B

.bss
Size: 1024B - Virtual size: 786B

.rsrc
Size: 1024B - Virtual size: 571B