24131b2dbe207f671a7956098b867ff1

Sharing

Copy URL

Twitter E-mail

General

Target

24131b2dbe207f671a7956098b867ff1
Size

91KB
MD5

24131b2dbe207f671a7956098b867ff1
SHA1

1b63ffc482e1ab9858053613c94303ff83ebfb93
SHA256

cb63b3711b7fba71e67a97bc2f509ead01b2488594e6d86c29183cc80244e359
SHA512

1ab854c3f9845c7190d1a9ae2543efc4f583f7d54d9ce56f125e3c8eeb768dc48a03d450459df42ac02c0fcd750b1114ff8fb6c4e7b6e3ab797452cf76139432
SSDEEP

1536:7o1lnofQxvcfaZmpiAn4/w7xP2AImq4v9/:7sGGcMiF447x2AD

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
24131b2dbe207f671a7956098b867ff1

Files

24131b2dbe207f671a7956098b867ff1
.exe windows:4 windows x86 arch:x86

6da5e67ae7fef00d9ea6451534e4a5b8

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateThread
CreateDirectoryA
GetConsoleCP
GetConsoleOutputCP
GetProcessHeap
GetFileSize
DeleteAtom
GetVersion
GetComputerNameA
GetLastError
FreeConsole
GetLastError
Sleep
GetFileTime
CreateThread
ExitProcess
CreateProcessA
DeleteFileW
GetConsoleCP
CreateDirectoryA
OpenFile
GetVersion
GetComputerNameA
GetCPInfo
GetStdHandle
ExitThread
GetACP
GetConsoleMode
GetConsoleCP
ExitThread
GetFileTime
Sleep
OpenFile
CreateThread
GetCommandLineA
GetLastError
ExitProcess
GetConsoleOutputCP
CreateProcessA
GlobalFree
GetCommandLineA
GetOEMCP
DeleteFileW
CreateDirectoryA
FindFirstFileA
GetVersion
GlobalFree
DeleteFileA
CreateProcessA
GetConsoleMode
GetConsoleCP
ExitProcess
GetLastError
GetLastError
GetFileSize
FindAtomA
GetFileTime
CreateThread
DeleteAtom
DeleteFileW
GetConsoleOutputCP
OpenFile
GetCPInfo

advapi32

RegOpenKeyW
RegQueryInfoKeyA
RegOpenKeyExW
RegEnumKeyW
RegFlushKey
RegOpenKeyA
RegQueryValueW
RegDeleteValueW
RegReplaceKeyA
RegCreateKeyW
RegLoadKeyA
RegOpenKeyExA
RegDeleteValueA
RegDeleteKeyW
RegEnumKeyA

user32

BlockInput
GetDlgItem
GetFocus
GetDC
IsMenu
CalcMenuBar
GetCursor
AppendMenuA
LoadCursorA
DrawIcon
DrawIconEx
GetMenu
EndDialog
CopyIcon
CloseWindow
CopyRect
DrawTextW
DrawTextA
CopyImage
BlockInput
EndDialog
CloseWindow
GetDlgItem
AppendMenuA
DrawTextA
GetCursor
CopyIcon
LoadMenuA
CreateIcon
InsertMenuA
AlignRects
GetMenu
IsWindow
DrawIcon
GetFocus
DrawTextW
CalcMenuBar
LoadCursorA
GetDlgItem
InsertMenuA
AppendMenuA
DialogBoxParamW
DrawIconEx
AlignRects
GetMenu
CopyImage
GetWindowTextLengthA
GetCursor
GetFocus
CalcMenuBar
BlockInput
AppendMenuW
IsMenu
CopyRect

Sections

.itext
Size: 27KB - Virtual size: 26KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.init
Size: 46KB - Virtual size: 385KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 711B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6da5e67ae7fef00d9ea6451534e4a5b8

Headers

File Characteristics

Imports

kernel32

advapi32

user32

Sections

.itext Size: 27KB - Virtual size: 26KB

.rdata Size: 4KB - Virtual size: 4KB

.init Size: 46KB - Virtual size: 385KB

.idata Size: 5KB - Virtual size: 4KB

.data Size: 6KB - Virtual size: 6KB

.rsrc Size: 1024B - Virtual size: 711B

.itext
Size: 27KB - Virtual size: 26KB

.rdata
Size: 4KB - Virtual size: 4KB

.init
Size: 46KB - Virtual size: 385KB

.idata
Size: 5KB - Virtual size: 4KB

.data
Size: 6KB - Virtual size: 6KB

.rsrc
Size: 1024B - Virtual size: 711B