213c24c715aac641a6dceec43ed6c1e9

General

Target

213c24c715aac641a6dceec43ed6c1e9
Size

132KB
MD5

213c24c715aac641a6dceec43ed6c1e9
SHA1

8c90e21dd0d35f49080efada98e0a7d2fee54b43
SHA256

f168dbc9536ea82bd625f3c73673374af4f2a1f3fa6c93ec613dc561ff8afe01
SHA512

8d813cee6dd0007d221315be581054df2c21f216d6255c952fb46ce0b0a9ec2de8e736a8a612046b8b5d5c1875cf016994a2fd9dca0bdac06fb82a352b35aaa1
SSDEEP

3072:1lsTwiN4jtL8IT+S+tmckiOfCgnfbEGbvaC89+/N4:8UiNwVkICKQGbSl+/N4

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
213c24c715aac641a6dceec43ed6c1e9

Files

213c24c715aac641a6dceec43ed6c1e9
.exe windows:5 windows x86 arch:x86

4b0e497bf08b8c29834c9cef571fbef8

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

RectVisible
EndPath
GetNearestColor
GetTextExtentPointA
GetLayout
GetTextFaceW
SetAbortProc
SetDIBColorTable

comctl32

ImageList_Read
CreateToolbarEx
InitCommonControlsEx
DestroyPropertySheetPage

kernel32

WaitForSingleObject
GetBinaryTypeA
GlobalHandle
GlobalFree
SetCommMask
GetProcAddress
LocalReAlloc
DefineDosDeviceW
GetCommConfig
lstrcpyA
LoadLibraryW
lstrcmpiW
MoveFileA

user32

SetWindowPlacement
GetWindowLongW
CharLowerW
LoadStringW
ShowScrollBar
SystemParametersInfoA
GetMenuItemID
GetPropW
keybd_event
GetMessageW
GetKeyState
AppendMenuW
LoadCursorA

Exports

Exports

?yhzzspayAr@@YGMPAGPAK@Z
?dvllsfdwhbCtfUpbA@@YGXG@Z
?byQAnccqIiqXdDuqV@@YGDPAIK@Z

Sections

.text
Size: 17KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.temp
Size: 98KB - Virtual size: 98KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 512B - Virtual size: 169B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 265KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.crt
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4b0e497bf08b8c29834c9cef571fbef8

Headers

File Characteristics

Imports

gdi32

comctl32

kernel32

user32

Exports

Exports

Sections

.text Size: 17KB - Virtual size: 16KB

.temp Size: 98KB - Virtual size: 98KB

.edata Size: 512B - Virtual size: 169B

.data Size: 5KB - Virtual size: 265KB

.crt Size: 5KB - Virtual size: 5KB

.rsrc Size: 3KB - Virtual size: 2KB

.reloc Size: 2KB - Virtual size: 2KB

.text
Size: 17KB - Virtual size: 16KB

.temp
Size: 98KB - Virtual size: 98KB

.edata
Size: 512B - Virtual size: 169B

.data
Size: 5KB - Virtual size: 265KB

.crt
Size: 5KB - Virtual size: 5KB

.rsrc
Size: 3KB - Virtual size: 2KB

.reloc
Size: 2KB - Virtual size: 2KB