1e751c66e8abbac975cf11856a329540

General

Target

1e751c66e8abbac975cf11856a329540
Size

113KB
MD5

1e751c66e8abbac975cf11856a329540
SHA1

f5a8dafee55d49b08257bed0d7390ecbddc3d78a
SHA256

62729196cf5f5c5211945928e7e4bbfae61a68401c11073a49d6974d2fb2da48
SHA512

1f9837b009ea1db4fd82862c07e3070003b2b28cfe04f9251c7d158c42ac920b855a5830879a0b8d43d6712ac52fd08e53cb695a46dd57c2d99f827d143ddb18
SSDEEP

3072:Khzr4uHnOM5QkqKAOhW2eLRFJcBnT5VShg87yHWcSr8nej:Klr41/KAmiVFJcBT/jnZY8I

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1e751c66e8abbac975cf11856a329540

Files

1e751c66e8abbac975cf11856a329540
.exe windows:5 windows x86 arch:x86

5a376b5084aa07c71e27e4fbf15b5097

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

shlwapi

StrCmpNA

user32

GetMenuItemID
GetPropW
FindWindowA
BringWindowToTop
DeleteMenu
ShowScrollBar
PostThreadMessageA
InSendMessageEx
GetWindowLongW
GetDoubleClickTime
IsWindowVisible
GetClassInfoA
VkKeyScanW

gdi32

StretchDIBits
PolyBezier
ResizePalette
RectInRegion
SetBrushOrgEx
AddFontResourceW
RoundRect
GetTextExtentPointA
CreateICW

kernel32

GetFileAttributesW
GetFileTime
ExitThread
lstrlenA
WinExec
lstrcmpiW
LoadLibraryW
GlobalReAlloc
GetProcAddress
AddAtomA
SetThreadExecutionState
CreateFileW

comdlg32

PrintDlgW
FindTextW

Exports

Exports

?uqcchognsNypIaYxeBzGdn@@YGPAJEPAG@Z
?mNfzRpxsw@@YGPAXPAGPA_N@Z

Sections

.text
Size: 18KB - Virtual size: 18KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.edata
Size: 512B - Virtual size: 141B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.temp
Size: 76KB - Virtual size: 76KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.crt
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5a376b5084aa07c71e27e4fbf15b5097

Headers

File Characteristics

Imports

shlwapi

user32

gdi32

kernel32

comdlg32

Exports

Exports

Sections

.text Size: 18KB - Virtual size: 18KB

.edata Size: 512B - Virtual size: 141B

.temp Size: 76KB - Virtual size: 76KB

.data Size: 5KB - Virtual size: 17KB

.crt Size: 5KB - Virtual size: 5KB

.rsrc Size: 3KB - Virtual size: 3KB

.reloc Size: 3KB - Virtual size: 2KB

.text
Size: 18KB - Virtual size: 18KB

.edata
Size: 512B - Virtual size: 141B

.temp
Size: 76KB - Virtual size: 76KB

.data
Size: 5KB - Virtual size: 17KB

.crt
Size: 5KB - Virtual size: 5KB

.rsrc
Size: 3KB - Virtual size: 3KB

.reloc
Size: 3KB - Virtual size: 2KB