2d3b57bd70850ed47a12cf286035c795

Sharing

Copy URL

Twitter E-mail

General

Target

2d3b57bd70850ed47a12cf286035c795
Size

93KB
MD5

2d3b57bd70850ed47a12cf286035c795
SHA1

2a0301327bc160ac045f61e4fd25c71b4f06690b
SHA256

d3a9406a6a0e4e95192dabcd8041d66394de1d348d39321bf6fb63a88687d8c5
SHA512

471c2b6eeed0d14330de51b032b7455189b4e0cf06e2fbd3869ad7d713106957e4a79555c934d7355183af96ed466b2d5b768d0b5e5180dd9815790abc225aba
SSDEEP

1536:zXitYdPtCaytawS0uGWJC9KtwTfW6K8bgVk1BNKAPR:zXwFtac7WU9VTfW6K8bp1BEAP

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2d3b57bd70850ed47a12cf286035c795

Files

2d3b57bd70850ed47a12cf286035c795
.exe windows:4 windows x86 arch:x86

a076aa0bc3756f99c8cd5bb937261212

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetSysColor
SetWindowTextA
MessageBoxA
GetCursorPos
CreateIcon
ClientToScreen
GetFocus
GetDlgItem
CharNextA
GetMenuState
SystemParametersInfoA
DispatchMessageA
GetIconInfo
GetWindowTextA
IsWindowVisible
DrawIconEx
GetCursor
CallWindowProcA
CallNextHookEx
FrameRect
EnableMenuItem
IsChild
DispatchMessageW
DrawEdge
EndPaint
IsMenu
RegisterClassA
TrackPopupMenu
IsDialogMessageA
GetMenu
IsWindowEnabled
GetDesktopWindow
EnumWindows

kernel32

GetThreadLocale
GetCurrentProcess
ExitThread
GetFileSize
SetErrorMode
CloseHandle
GetTickCount
SizeofResource
GetVersionExA
CreateFileA
VirtualAlloc
GetStartupInfoA
FindResourceA
Sleep
FindClose
HeapAlloc
GetCommandLineA
lstrcmpA
DeleteFileA
GetStringTypeA
VirtualQuery
GetCurrentProcessId
WideCharToMultiByte
GetProcAddress
LoadLibraryA
LocalReAlloc
RaiseException
ExitProcess
GetCurrentThread
GetCurrentThreadId
lstrlenA
FindFirstFileA
lstrcpynA

comdlg32

GetOpenFileNameA
FindTextA
GetSaveFileNameA
ChooseColorA

shell32

SHGetDiskFreeSpaceA
DragQueryFileA
SHGetSpecialFolderLocation
SHGetFileInfoA
SHDefExtractIconA

ole32

CoRevokeClassObject
ReleaseStgMedium
CoDisconnectObject
CoGetMalloc
GetHGlobalFromStream
CoUninitialize
CoCreateInstanceEx

Sections

.text
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 69KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.init
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

INIT
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 571B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a076aa0bc3756f99c8cd5bb937261212

Headers

File Characteristics

Imports

user32

kernel32

comdlg32

shell32

ole32

Sections

.text Size: 10KB - Virtual size: 10KB

.rdata Size: 5KB - Virtual size: 5KB

.edata Size: 69KB - Virtual size: 68KB

.init Size: 4KB - Virtual size: 4KB

INIT Size: 2KB - Virtual size: 1KB

.rsrc Size: 1024B - Virtual size: 571B

.text
Size: 10KB - Virtual size: 10KB

.rdata
Size: 5KB - Virtual size: 5KB

.edata
Size: 69KB - Virtual size: 68KB

.init
Size: 4KB - Virtual size: 4KB

INIT
Size: 2KB - Virtual size: 1KB

.rsrc
Size: 1024B - Virtual size: 571B