2f499502702f9066a4be9cd83d0d3ccb

General

Target

2f499502702f9066a4be9cd83d0d3ccb
Size

43KB
MD5

2f499502702f9066a4be9cd83d0d3ccb
SHA1

57305de041901a4be1f93d88f33720c0112d7981
SHA256

a21c2c24cf9736c034efc8a1998e02316d18d548e4b1bb8973c4e54af3e992ed
SHA512

1cda94dd1f147368fa80758dc174d40cd48e1baf1db17a6d1b2c020b7efb6ad5c7d19f6e1d053bb72445a04265bdc822c29df559816dd9a8d73350d61a306f7e
SSDEEP

768:L74ayeHm84EF4Bu/Z7iwoFw3c2YD3z9fkne5vdg4gIb2tBNAr:QfeHrlF/Uw2jQub2zNA

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2f499502702f9066a4be9cd83d0d3ccb

Files

2f499502702f9066a4be9cd83d0d3ccb
.exe windows:4 windows x86 arch:x86

524bfcf42345511c41c2fe136f0fbe5e

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

AddAtomA
CommConfigDialogA
CreateSemaphoreA
ExitProcess
FindResourceA
FreeConsole
GetConsoleCP
GetCurrentDirectoryW
GetDateFormatA
GetDefaultCommConfigA
GetPrivateProfileSectionNamesW
GetStringTypeExW
GetSystemTimeAdjustment
GetThreadSelectorEntry
HeapAlloc
InitializeCriticalSection
InterlockedIncrement
LCMapStringA
LocalFileTimeToFileTime
Module32First
ReadFile
RemoveDirectoryA
RemoveDirectoryW
ResumeThread
SearchPathW
SetCommTimeouts
SetPriorityClass
Sleep
TlsGetValue
UnlockFile

user32

AnyPopup
CallNextHookEx
CheckRadioButton
CopyRect
DdeAccessData
DdeCreateDataHandle
DdeDisconnect
DefFrameProcA
DefWindowProcW
DialogBoxParamW
DrawTextExW
EndDeferWindowPos
EnumChildWindows
EnumPropsW
ExitWindowsEx
GetDoubleClickTime
GetInternalWindowPos
GetWindowThreadProcessId
IMPSetIMEW
LoadCursorFromFileA
LoadIconA
RegisterClassExA
SwitchDesktop
ToAsciiEx
UnpackDDElParam

gdi32

AngleArc
CreateEnhMetaFileW
EnumFontFamiliesA
EnumICMProfilesA
EnumObjects
ExcludeClipRect
GetCharABCWidthsFloatW
GetCharWidth32A
GetDIBColorTable
GetEnhMetaFileDescriptionA
GetKerningPairsA
GetMiterLimit
GetROP2
GetTextCharsetInfo
GetTextExtentPoint32W
PolyDraw
PolyPolyline
RealizePalette
SetDIBitsToDevice
SetTextCharacterExtra
StartDocW

Sections

.text
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 41KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.xdata
Size: 512B - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

524bfcf42345511c41c2fe136f0fbe5e

Headers

File Characteristics

Imports

kernel32

user32

gdi32

Sections

.text Size: 512B - Virtual size: 4KB

.data Size: 41KB - Virtual size: 48KB

.xdata Size: 512B - Virtual size: 20KB

.text
Size: 512B - Virtual size: 4KB

.data
Size: 41KB - Virtual size: 48KB

.xdata
Size: 512B - Virtual size: 20KB