2225fe31a1d55ac9b00f3ec38a937be7

Sharing

Copy URL Twitter E-mail

General

Target

2225fe31a1d55ac9b00f3ec38a937be7
Size

122KB
MD5

2225fe31a1d55ac9b00f3ec38a937be7
SHA1

52483febe858d7582e834af30f399a64277491af
SHA256

66f0d793a405a543410491cfe2323ef19f2548e6dcc221a2a7c3818f57759121
SHA512

3bdef4c5b846a87e7c28f3cc765ac994acf6c4066aa337b3c29e37aef36d9a8804857b0064266e274086390cf1d3ee76bde41151133c89cc95ef8e2c9caf8aea
SSDEEP

3072:mt16zHVlhM3CtZTSl1HSfNcygBfIP79Bzzbw8U/y1:m2JlyytpgHByglIPZBvM8U/y

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2225fe31a1d55ac9b00f3ec38a937be7

Files

2225fe31a1d55ac9b00f3ec38a937be7
.dll windows:5 windows x86 arch:x86

a958a6616e4089dbc57d01ab9819fbbd

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

shell32

ord195
ord196

kernel32

EnumSystemLocalesA
GetTempPathA
lstrcpyA
GetBinaryTypeW
UnlockFile
UnhandledExceptionFilter
IsValidLocale
IsDBCSLeadByteEx
GetModuleHandleW
GetShortPathNameA
UnmapViewOfFile
GetModuleHandleA
SetThreadExecutionState
GetUserDefaultUILanguage
CopyFileW
IsValidLanguageGroup
FindResourceExW

user32

EnableMenuItem
LoadBitmapA
GetKeyState
SendDlgItemMessageW
DrawStateW
GetDlgItemTextW
DeleteMenu
TabbedTextOutW
SwitchToThisWindow
GetWindowTextA
IsCharAlphaW
IsWindow
GetActiveWindow
GetMenuItemRect
GetUserObjectInformationW
ModifyMenuW
SetWindowPos
InflateRect
IsCharUpperA
GetClipCursor
IsZoomed
SetRect
MoveWindow
RegisterHotKey
GetClassInfoExA
CreateAcceleratorTableW
AdjustWindowRect
GetShellWindow

shlwapi

StrChrW

gdi32

SetTextAlign
Polygon
SetWindowExtEx
RectVisible
StartPage
CreatePenIndirect
GetTextColor
GetTextExtentPointW
SetDIBColorTable
GetTextMetricsA
SetBkMode
GetNearestPaletteIndex
AddFontResourceW

Exports

Exports

AlphaBlend
?DUIidJLdlukydILKDFyiuITFUf6utydyifdikgfgfdhgfd@@YGKEPA_WG@Z

Sections

.text
Size: 78KB - Virtual size: 77KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.mdata
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 141KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a958a6616e4089dbc57d01ab9819fbbd

Headers

File Characteristics

Imports

shell32

kernel32

user32

shlwapi

gdi32

Exports

Exports

Sections

.text Size: 78KB - Virtual size: 77KB

.rdata Size: 28KB - Virtual size: 27KB

.mdata Size: 11KB - Virtual size: 11KB

.data Size: 1KB - Virtual size: 141KB

.rsrc Size: 512B - Virtual size: 16B

.reloc Size: 1KB - Virtual size: 1KB

.text
Size: 78KB - Virtual size: 77KB

.rdata
Size: 28KB - Virtual size: 27KB

.mdata
Size: 11KB - Virtual size: 11KB

.data
Size: 1KB - Virtual size: 141KB

.rsrc
Size: 512B - Virtual size: 16B

.reloc
Size: 1KB - Virtual size: 1KB