1499936982fd434b0cea18450d60a9b3

General

Target

1499936982fd434b0cea18450d60a9b3
Size

315KB
MD5

1499936982fd434b0cea18450d60a9b3
SHA1

78b27744fa3c78e159656d39443b37170d6b4be7
SHA256

8185facf51f57341b7862bc83dab6b7c1fa307c6b7351852595fc3f11fa41aca
SHA512

570dea47818f4986dd829fec704aeb210e4800b38dc4f2350e4e3346ff4e7279d3b3ab3db8d563baf39200ddee785db6fea9214888bbef87d1bd79f56f1a6c91
SSDEEP

6144:y8yRjL2yGJrR2V6HJM6rP/P9IA+9lF5Fi48sQeIycqkLXS:ypyycR2VIVP/+7F7m4Iyc

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1499936982fd434b0cea18450d60a9b3

Files

1499936982fd434b0cea18450d60a9b3
.exe windows:5 windows x86 arch:x86

e2ea0a8b893efb0d6b297a93a4393ee6

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetWindowRect
GetLastActivePopup
GetKeyState
SetDlgItemInt
IsWindowVisible
CharUpperW
GetTopWindow
SetScrollRange
SystemParametersInfoW
GetScrollInfo
PostMessageW
GetMenuItemCount
OffsetRect
GetForegroundWindow
ShowOwnedPopups

rpcrt4

RpcRevertToSelf
RpcBindingFromStringBindingW
UuidCreate
RpcBindingFromStringBindingA

msvcrt

__doserrno

crypt32

CryptUnregisterOIDInfo

ws2_32

WSAGetLastError

comdlg32

GetOpenFileNameA
PrintDlgA

kernel32

HeapReAlloc
GlobalFree
GetFileAttributesA
lstrcmpiW
CopyFileW
GetVersionExW
FindClose
CloseHandle
HeapAlloc
lstrlenA
VirtualAlloc
MulDiv
HeapFree
GetUserDefaultLCID
CreateProcessW
FindFirstFileW
SetLastError
GetLastError
FindNextFileW
GetProcessHeap
GlobalAlloc
CreateEventW
GetFileAttributesW
WideCharToMultiByte
ResetEvent
Sleep
GetShortPathNameW
GetFullPathNameW

Sections

.text
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 32KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 928KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 266KB - Virtual size: 265KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

e2ea0a8b893efb0d6b297a93a4393ee6

Headers

DLL Characteristics

File Characteristics

Imports

user32

rpcrt4

msvcrt

crypt32

ws2_32

comdlg32

kernel32

Sections

.text Size: 12KB - Virtual size: 12KB

.rsrc Size: 32KB - Virtual size: 32KB

.data Size: 3KB - Virtual size: 928KB

.rdata Size: 266KB - Virtual size: 265KB

.text
Size: 12KB - Virtual size: 12KB

.rsrc
Size: 32KB - Virtual size: 32KB

.data
Size: 3KB - Virtual size: 928KB

.rdata
Size: 266KB - Virtual size: 265KB