3cb3093bdcd389a9fc74e9be91da766b

General

Target

3cb3093bdcd389a9fc74e9be91da766b
Size

208KB
MD5

3cb3093bdcd389a9fc74e9be91da766b
SHA1

45bd94c8583aa10c1fd768c1f413600a200660b7
SHA256

789511072ab91254ffb98507badf71073d7cac1181cbe31ab814ac5a94c28a1f
SHA512

d9fe7ff0ea7d1e0beb87041ef900fcdda1ba90d2fc9e56781e135b96c35550810ce6b7b0a22209aa2b860a7f049b78928b11c9756a5e69ecedb865bd83bce170
SSDEEP

6144:NOhaYC/jUnwlTWrdUtgHfxt1G72HP6vlik:ggYCxequxtoav6d7

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3cb3093bdcd389a9fc74e9be91da766b

Files

3cb3093bdcd389a9fc74e9be91da766b
.exe windows:4 windows x86 arch:x86

42893ef0ae5f0faca2e95e2f60896ba0

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

AddFontResourceA
Arc
CombineRgn
CreateDIBSection
CreateFontIndirectA
CreateICW
CreatePolygonRgn
CreateRectRgnIndirect
CreateSolidBrush
DeleteEnhMetaFile
EnumFontFamiliesExA
GetDeviceCaps
GetRegionData
GetTextExtentPointA
GetWinMetaFileBits
SetRectRgn
StartDocW
UnrealizeObject

kernel32

FlushFileBuffers
FormatMessageA
GetCommandLineW
GetDateFormatA
GetFileAttributesW
GetFileSize
GetModuleFileNameA
MoveFileA
ReleaseMutex
RemoveDirectoryA
SetEnvironmentVariableA
SetFileAttributesA
TerminateProcess
lstrcmpiW
lstrcpyA

user32

AdjustWindowRectEx
DispatchMessageA
FrameRect
GetDesktopWindow
GetScrollInfo
GetWindowLongA
GetWindowTextA
IsWindowVisible
SendMessageA
SetClassLongA
SetClipboardData
SetWindowLongA
TrackPopupMenu
WindowFromPoint

Sections

.text
Size: 88KB - Virtual size: 87KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 98KB - Virtual size: 97KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 18KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

kmIIho2P
Size: 1KB - Virtual size: 120KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

42893ef0ae5f0faca2e95e2f60896ba0

Headers

File Characteristics

Imports

gdi32

kernel32

user32

Sections

.text Size: 88KB - Virtual size: 87KB

.rdata Size: 1KB - Virtual size: 1KB

.data Size: 98KB - Virtual size: 97KB

.rsrc Size: 18KB - Virtual size: 17KB

kmIIho2P Size: 1KB - Virtual size: 120KB

.text
Size: 88KB - Virtual size: 87KB

.rdata
Size: 1KB - Virtual size: 1KB

.data
Size: 98KB - Virtual size: 97KB

.rsrc
Size: 18KB - Virtual size: 17KB

kmIIho2P
Size: 1KB - Virtual size: 120KB