15588d322b98b93ce19804d255906392

General

Target

15588d322b98b93ce19804d255906392
Size

250KB
MD5

15588d322b98b93ce19804d255906392
SHA1

bf8423f47e3f2244420dd61e6b582a3cc03a1154
SHA256

944110fcad30530c6f988e5e76c688996a8d70321a723eb8efb80eb7f3bb2f01
SHA512

e2f2cb04fa7f9f2ccd35facf1aa89f0357c3ec25e61b38312ef4baacc2f31fce91699dbaa61cbe5d995450e7a609519d379ce8245fe7ff5939fb1e9a4a54ddb4
SSDEEP

6144:6CeTsBgWdV/BIxx493HFEKHB+CeWufofY93:FlBgG/BIfKFTHBheWmoQl

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
15588d322b98b93ce19804d255906392

Files

15588d322b98b93ce19804d255906392
.exe windows:4 windows x86 arch:x86

415b020ab01a44e86f187534c19cf223

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

AppendMenuA
GetWindowTextLengthA
GetMenu
IsMenu
DrawTextW
GetFocus
IsWindow
AppendMenuW
BlockInput
LoadMenuA
CalcMenuBar
DrawTextA
DialogBoxParamA
DrawIcon
EndDialog
CloseWindow
CopyRect
DrawIconEx
GetDC
GetCursor

kernel32

GetConsoleCP
GetStdHandle
GetConsoleCP
lstrcpyA
GetConsoleCP
lstrcatA
GetConsoleCP
GetLocalTime
GetConsoleCP
WideCharToMultiByte
GetConsoleCP
GetCPInfo
GetConsoleCP
GlobalFree
GetConsoleCP
GetFileType
GetConsoleCP
GetStringTypeW
GetLastError
GetStringTypeA
WideCharToMultiByte
DeleteFileA
GetFileAttributesA
lstrcmpA
GetDateFormatA
HeapFree
lstrcpyA
GetCommandLineA
lstrcatA
GlobalFree
Sleep
GetLocalTime
GetFileSize
GetStdHandle
GetConsoleCP
lstrcmpiA
GetModuleHandleA
lstrcpynA

advapi32

RegQueryValueA
RegDeleteKeyW
RegOpenKeyW
RegQueryValueExW
RegEnumKeyExW
RegCreateKeyW
RegFlushKey
RegLoadKeyA
RegEnumValueA
RegEnumKeyA
RegDeleteKeyA
RegCreateKeyExA
RegReplaceKeyW
RegEnumValueW
RegEnumKeyW
RegQueryInfoKeyW
RegOpenKeyA
RegQueryInfoKeyA
RegQueryValueExA
RegOpenKeyExA
RegGetKeySecurity

Sections

.text
Size: 15KB - Virtual size: 14KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 216KB - Virtual size: 215KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.eaata
Size: 11KB - Virtual size: 62KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: - Virtual size: 1KB

IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

415b020ab01a44e86f187534c19cf223

Headers

File Characteristics

Imports

user32

kernel32

advapi32

Sections

.text Size: 15KB - Virtual size: 14KB

.rdata Size: 216KB - Virtual size: 215KB

.eaata Size: 11KB - Virtual size: 62KB

.bss Size: - Virtual size: 1KB

.rsrc Size: 4KB - Virtual size: 3KB

.text
Size: 15KB - Virtual size: 14KB

.rdata
Size: 216KB - Virtual size: 215KB

.eaata
Size: 11KB - Virtual size: 62KB

.bss
Size: - Virtual size: 1KB

.rsrc
Size: 4KB - Virtual size: 3KB