62c151d2e8319f95e8ee115046829387

General

Target

62c151d2e8319f95e8ee115046829387
Size

107KB
MD5

62c151d2e8319f95e8ee115046829387
SHA1

6a3b41566f50354440b8cd967909c1fd1c0f2d56
SHA256

f0dd949a69bc398aecc96b583731e420855f1536027d48d6ba4894060ec90030
SHA512

d8caf0a281bf63cceb5fe9789e99e19b2e29565000399d53de844a03b7d498a552c53e7ccfd814f863510e95423304230473feff4818fef76c85595f1379138c
SSDEEP

3072:2pZ7H52Ta2DCq8dPUYARcGa7jrDuzqGqFY/btID:2pZcTa22ZWYHV7j3u1qn

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
62c151d2e8319f95e8ee115046829387

Files

62c151d2e8319f95e8ee115046829387
.exe windows:5 windows x86 arch:x86

e828b4f7b489bbb75d37d58210620bfd

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

GetSystemPaletteEntries
PolyBezier
FillRgn
SaveDC
GetBitmapBits
CreateBrushIndirect

comdlg32

GetSaveFileNameA
GetOpenFileNameA

shlwapi

PathMakePrettyW
PathFindFileNameW

user32

CreateDialogParamA
GetSystemMetrics
GetDlgItemTextA
ShowScrollBar
CheckMenuRadioItem
DrawMenuBar
AdjustWindowRectEx
SystemParametersInfoW
InSendMessage
DrawIcon
CreateMenu
TranslateMessage
SetWindowLongW

ntdll

_stricmp
memset

kernel32

InterlockedExchangeAdd
HeapValidate
SetCommBreak
UnhandledExceptionFilter
GetCurrentProcessId
VerSetConditionMask
LocalReAlloc
InterlockedExchange
lstrcmpiW
EnumSystemLocalesA
ExitProcess

Sections

.code
Size: 23KB - Virtual size: 23KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.import
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 49KB - Virtual size: 205KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 32KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 422B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e828b4f7b489bbb75d37d58210620bfd

Headers

File Characteristics

Imports

gdi32

comdlg32

shlwapi

user32

ntdll

kernel32

Sections

.code Size: 23KB - Virtual size: 23KB

.import Size: 1KB - Virtual size: 1KB

.data Size: 49KB - Virtual size: 205KB

.rdata Size: 32KB - Virtual size: 31KB

.edata Size: 512B - Virtual size: 422B

.rsrc Size: 2KB - Virtual size: 4KB

.reloc Size: 2KB - Virtual size: 1KB

.code
Size: 23KB - Virtual size: 23KB

.import
Size: 1KB - Virtual size: 1KB

.data
Size: 49KB - Virtual size: 205KB

.rdata
Size: 32KB - Virtual size: 31KB

.edata
Size: 512B - Virtual size: 422B

.rsrc
Size: 2KB - Virtual size: 4KB

.reloc
Size: 2KB - Virtual size: 1KB