4f220d2e3ef7111e1021081bb26ec6c2

Sharing

Copy URL

Twitter E-mail

General

Target

4f220d2e3ef7111e1021081bb26ec6c2
Size

232KB
MD5

4f220d2e3ef7111e1021081bb26ec6c2
SHA1

bbddbeabaa0e5ecdc788cc1fec3833d78bd77be0
SHA256

e31706e65b77c1dcafb8deb33d0db5ec928dfce15b9f49b62c72c39cfc4ee10a
SHA512

087458a6c458850052fcd3091fdb75b2eb5975fcbe37e616ba38610696d8b3bf00e3227b519439fa7cbc098ffd7c68382560aee2a9403ce3230fc5163e268166
SSDEEP

6144:e20SDHQ9YlaOOD5P5HsDkmjaBbzLUXTrQUmXGKzTUhAYt:rHUYDWP5HsDkmYHLamPY

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4f220d2e3ef7111e1021081bb26ec6c2

Files

4f220d2e3ef7111e1021081bb26ec6c2
.exe windows:5 windows x86 arch:x86

e9e9ed613a4f39092f8c6ae3a5440d04

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

comdlg32

PrintDlgExW
ChooseColorW
PageSetupDlgW

kernel32

ReadFile
VirtualAlloc
SetHandleCount
LCMapStringW
GetLastError
CreateThread
GlobalGetAtomNameW
SetHandleInformation
SetThreadExecutionState
GetCurrentThread
EnumSystemLocalesA
FindNextFileW
EnumResourceNamesA
WaitCommEvent
LoadLibraryExA
HeapLock
lstrcpynW

user32

DispatchMessageW
GetUserObjectInformationA
PostMessageA
TranslateAcceleratorW
GetClientRect
CreateIconFromResource
GetClassInfoExW
EnableMenuItem
GrayStringW
ShowWindowAsync
RemovePropW
CreatePopupMenu
ScreenToClient
GetDoubleClickTime
GetDlgCtrlID
SetSysColors
GetUpdateRect
EnableWindow
GetWindow
RegisterHotKey
SetScrollInfo
FindWindowExW
CharToOemA
CharToOemW
ShowScrollBar
RegisterWindowMessageA
EnumChildWindows
TrackPopupMenu
OffsetRect
ShowWindow
CharUpperBuffA
ModifyMenuW
LoadMenuA
GetMessageW
CharNextExA

comctl32

ImageList_Remove
InitCommonControlsEx
ImageList_GetIconSize

gdi32

GetClipBox
LineTo
GetObjectA
EnumFontsW
CreatePen
GetTextExtentExPointW
DeleteObject
GetWindowOrgEx
CreateCompatibleDC
SetStretchBltMode
SetDIBitsToDevice
SetBrushOrgEx
ExtTextOutA
GetNearestPaletteIndex
SetPaletteEntries
SetBkColor

Exports

Exports

?IUDFijfjkKLJFOIUofiuOFUiofOFYU@@YGKEPA_WG@Z

Sections

.text
Size: 213KB - Virtual size: 212KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.vdt
Size: - Virtual size: 106KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.vsctn
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e9e9ed613a4f39092f8c6ae3a5440d04

Headers

File Characteristics

Imports

comdlg32

kernel32

user32

comctl32

gdi32

Exports

Exports

Sections

.text Size: 213KB - Virtual size: 212KB

.rdata Size: 11KB - Virtual size: 11KB

.data Size: 3KB - Virtual size: 3KB

.vdt Size: - Virtual size: 106KB

.vsctn Size: 1KB - Virtual size: 1KB

.rsrc Size: 512B - Virtual size: 16B

.reloc Size: 1KB - Virtual size: 1KB

.text
Size: 213KB - Virtual size: 212KB

.rdata
Size: 11KB - Virtual size: 11KB

.data
Size: 3KB - Virtual size: 3KB

.vdt
Size: - Virtual size: 106KB

.vsctn
Size: 1KB - Virtual size: 1KB

.rsrc
Size: 512B - Virtual size: 16B

.reloc
Size: 1KB - Virtual size: 1KB