27bf734c26c60caa49c86e5ac41d1e70

General

Target

27bf734c26c60caa49c86e5ac41d1e70
Size

216KB
MD5

27bf734c26c60caa49c86e5ac41d1e70
SHA1

b4c429c64b32aed1ad57b18f2cff1146b04ab06b
SHA256

6eb30d72572d28a9c99131a4e1ca46f243f958b701518b4b1ca9e394647d2b32
SHA512

09b4a2e4d8c4f07b0bc8ed3a6fdbb6ad0a1cdd989bf04d5057f9158d5fbaa914d8523a8e570224cc2fd6919c25c594b272a8510abba20d3f120e58000264bfc4
SSDEEP

3072:EXh1sODD/nyo5fDYN6dSpA2V+7AN/U7dOKTrJazAeKXkLL:q5fopAi+schEYXkn

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
27bf734c26c60caa49c86e5ac41d1e70

Files

27bf734c26c60caa49c86e5ac41d1e70
.dll windows:5 windows x86 arch:x86

b56dd2a48010c8c6ed65c6d668247d2b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

user32

GetMenu
AppendMenuW
GetScrollInfo
GetWindowTextA
InsertMenuA
LoadMenuA
IsMenu
DrawIconEx
BeginPaint
CopyIcon
LoadCursorA
AppendMenuA
GetCursor
DialogBoxParamA
CopyImage
GetScrollPos
GetWindowTextLengthA
EndDialog
GetDlgItem

kernel32

CompareStringA
DeleteFileA
GetFileTime
GetPriorityClass
ExitThread
WriteFile
GetLocalTime
CreateDirectoryA
OpenFileMappingA
DeleteFileW
FreeResource
CopyFileA
FlushFileBuffers
ExitProcess
ReadFile
GetCPInfo
CopyFileExA
lstrlenA
GetLastError
FormatMessageA
lstrcmpA
OpenFile

advapi32

RegQueryInfoKeyW
RegEnumKeyA
RegLoadKeyA
RegQueryValueExW
RegEnumKeyW
RegCreateKeyExW
RegEnumKeyExW
RegEnumValueA
RegGetKeySecurity
RegLoadKeyW
RegEnumValueW
RegDeleteValueA
RegDeleteKeyW
RegCreateKeyA
RegFlushKey
RegOpenKeyA
RegCreateKeyW
RegQueryValueW

Sections

.jhno
Size: 31KB - Virtual size: 30KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.cpfba
Size: 24KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.hggdp
Size: 158KB - Virtual size: 426KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idhl
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b56dd2a48010c8c6ed65c6d668247d2b

Headers

File Characteristics

Imports

user32

kernel32

advapi32

Sections

.jhno Size: 31KB - Virtual size: 30KB

.cpfba Size: 24KB - Virtual size: 24KB

.hggdp Size: 158KB - Virtual size: 426KB

.idhl Size: 1KB - Virtual size: 1KB

.jhno
Size: 31KB - Virtual size: 30KB

.cpfba
Size: 24KB - Virtual size: 24KB

.hggdp
Size: 158KB - Virtual size: 426KB

.idhl
Size: 1KB - Virtual size: 1KB