4a49b505afb7e897051b32c4465070de

Sharing

Copy URL Twitter E-mail

General

Target

4a49b505afb7e897051b32c4465070de
Size

84KB
MD5

4a49b505afb7e897051b32c4465070de
SHA1

9418e83f5dceb439981e8990be06a6a10577d771
SHA256

f010de85387fed5ca564bcd30f4cb792c58adb4d5bff9f8655f33bb00092b84c
SHA512

44c794bebbb0de88e4e0db2fcf9ef91f24933704b530cb84f2220d3f6f24312511bedeb96d3990d1bef80a355c021095c3cb7a3b7e3b8b514b352cf6242bd2b4
SSDEEP

1536:FaGHSYAg3+Ofuk2YLFlVhsDhy7y4PmBCDnQ8kiBn/ICskSVgeQ4uR:FF0guNEhsdyGMQiBTsk2u

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4a49b505afb7e897051b32c4465070de

Files

4a49b505afb7e897051b32c4465070de
.exe windows:4 windows x86 arch:x86

00aafc107982e556c3b17dc020e928e5

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

shell32

SHGetDiskFreeSpaceA
SHDefExtractIconA
Shell_NotifyIconA
SHGetFileInfoA

user32

DrawIconEx
ShowScrollBar
GetIconInfo
CreateIcon
GetCursorPos
EnumThreadWindows
ShowWindow
GetWindow
DrawMenuBar
CallNextHookEx
GetCursor
GetMenuItemInfoA
GetDCEx
GetKeyState
GetClientRect
GetCapture
GetDlgItem
EnableScrollBar
TrackPopupMenu
SetWindowPos
DefWindowProcA
GetFocus
GetClassInfoA
GetWindowTextA
GetMenuItemID
CheckMenuItem
EnableMenuItem
SetCursor
DrawEdge
GetMessagePos
RegisterClassA
GetKeyNameTextA
SystemParametersInfoA
FillRect
EnableWindow
SetWindowTextA
GetScrollPos
GetSysColor
CharNextA
CreatePopupMenu
GetMenu
CreateMenu
BeginPaint
SetTimer
IsWindowVisible
DrawFrameControl

kernel32

GetCurrentThread
GetFullPathNameA
GetDateFormatA
LockResource
GetVersion
GetProcAddress
GetFileType
GetFileAttributesA
GetCurrentProcessId
CreateEventA
CloseHandle
GetCurrentThreadId
WriteFile
EnumCalendarInfoA
GetACP
SizeofResource
LocalAlloc
LoadLibraryExA
WaitForSingleObject
ReadFile
LoadResource
GlobalDeleteAtom
SetEvent
CompareStringA
SetHandleCount
lstrcatA
SetFilePointer
GlobalAddAtomA
GetProcessHeap
GetCurrentProcess
VirtualAlloc
SetEndOfFile
RaiseException
MulDiv
FindFirstFileA
DeleteFileA
GetCommandLineA
FreeResource
HeapFree
EnterCriticalSection
GetUserDefaultLCID
MoveFileA
GetLocalTime
GetThreadLocale
CreateThread
GetStartupInfoA
SetLastError
LoadLibraryA
GlobalAlloc
FormatMessageA
GetStringTypeA
lstrlenA
GetModuleHandleA
ExitProcess
Sleep
GetCPInfo
GetFileSize
WideCharToMultiByte

Sections

.text
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 66KB - Virtual size: 102KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.init
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 571B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

00aafc107982e556c3b17dc020e928e5

Headers

File Characteristics

Imports

shell32

user32

kernel32

Sections

.text Size: 7KB - Virtual size: 6KB

.data Size: 6KB - Virtual size: 5KB

.edata Size: 66KB - Virtual size: 102KB

.init Size: 3KB - Virtual size: 2KB

.rsrc Size: 1024B - Virtual size: 571B

.text
Size: 7KB - Virtual size: 6KB

.data
Size: 6KB - Virtual size: 5KB

.edata
Size: 66KB - Virtual size: 102KB

.init
Size: 3KB - Virtual size: 2KB

.rsrc
Size: 1024B - Virtual size: 571B