4fd5deb23c42b1e8bd0f0820334d9e19

General

Target

4fd5deb23c42b1e8bd0f0820334d9e19
Size

68KB
MD5

4fd5deb23c42b1e8bd0f0820334d9e19
SHA1

039418d289c753ac9504de84ad182abf69de49b8
SHA256

78601b8e02073f9a20cc0f1a7e0713e476342d5683b7d04944621ca864000438
SHA512

e3e8d2cb2af51fcfc42ea0d4de98ad63e20cc483ce1b8b271d9d829eb5fe4b222eb95ba0a227529eaaef55b2ed1c8af17be09984fb0d25aa849a26cb7ee14dd5
SSDEEP

1536:TB+rXPrZLaubCl5gwqD4N7urtnqjdSZkSGODAeFJwv:orXT5auQ5JqDKiqB2k2se4

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4fd5deb23c42b1e8bd0f0820334d9e19

Files

4fd5deb23c42b1e8bd0f0820334d9e19
.exe windows:4 windows x86 arch:x86

82f00970db3b748aa700def2fb80e101

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCommandLineA
GetStringTypeA
HeapAlloc
lstrcpyA
GetLastError
GetConsoleOutputCP
GetCurrentProcess
GetOEMCP
GetModuleFileNameA
DeleteFileA
GetFileSize
ExitProcess
GetCurrentThread
GetLocalTime
GetFileType
GlobalAlloc
GetCurrentProcessId
Sleep
lstrcmpA
GetCurrentThreadId
lstrcpynA
GetConsoleOutputCP
lstrcpynA
GetConsoleOutputCP
GetCurrentProcess
GetConsoleOutputCP
GetCurrentThreadId
GetConsoleOutputCP
FreeLibrary
GetConsoleOutputCP
GetCurrentThread
GetConsoleOutputCP
GetFileAttributesA
GetConsoleOutputCP
lstrcpyA
GetConsoleOutputCP
GlobalAlloc

user32

CopyRect
AppendMenuA
DialogBoxParamW
DrawIconEx
GetWindowTextA
DrawTextW
CalcMenuBar
LoadCursorA
GetDC
CopyIcon
GetCursor
GetDlgItem
BlockInput
DrawTextA
DialogBoxParamA
IsWindow
GetFocus
AppendMenuW
CloseWindow
DrawIconEx
GetFocus
IsMenu
CopyImage
GetMenu
CalcMenuBar
LoadCursorA
AlignRects
CreateIcon
AppendMenuA
AppendMenuW
DrawIcon
EndDialog
DrawTextW
CloseWindow
DialogBoxParamW
GetWindowTextA

Sections

.tdxt
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 46KB - Virtual size: 46KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.eddta
Size: 512B - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

82f00970db3b748aa700def2fb80e101

Headers

File Characteristics

Imports

kernel32

user32

Sections

.tdxt Size: 11KB - Virtual size: 10KB

.rdata Size: 46KB - Virtual size: 46KB

.eddta Size: 512B - Virtual size: 22KB

.idata Size: 5KB - Virtual size: 5KB

.rsrc Size: 1024B - Virtual size: 4KB

.tdxt
Size: 11KB - Virtual size: 10KB

.rdata
Size: 46KB - Virtual size: 46KB

.eddta
Size: 512B - Virtual size: 22KB

.idata
Size: 5KB - Virtual size: 5KB

.rsrc
Size: 1024B - Virtual size: 4KB