61479accc9a73416242701fddfcf6ef2

Sharing

Copy URL Twitter E-mail

General

Target

61479accc9a73416242701fddfcf6ef2
Size

84KB
MD5

61479accc9a73416242701fddfcf6ef2
SHA1

9095ec1b0d7bac274ee348b8a806769d2ea1c68a
SHA256

d009d1ff42079f43cf99e17274efa4cb6066fb81de58accfa03643458cd7f1f5
SHA512

687a65c1ca9288fe4d7da94704538ac15271df7c57f6593ba38217938403d2c63e324d32b20679037d3c7a64753a5b7b6250d1db3c73a6f679283ecd62bb2c76
SSDEEP

1536:RZT8aEHsKqoySi+mWTA9Js1Q2i7Y33u8I1ynxSNmyU3Do9f9kN:RZTVxKyj+j1Q2SY3p+yxSNmyUzP

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
61479accc9a73416242701fddfcf6ef2

Files

61479accc9a73416242701fddfcf6ef2
.exe windows:4 windows x86 arch:x86

54adf8e46c114087b96c608725c31c81

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

Beep
AddAtomW
CreateSemaphoreW
DeleteFileW
GetEnvironmentStringsW
SetCurrentDirectoryA
ExitProcess
VirtualAlloc
CreateFileA
HeapAlloc
MapViewOfFileEx
VirtualProtect
GetSystemDirectoryA
GetModuleHandleW
CreateFiber
GetModuleHandleA
GetProcAddress
WritePrivateProfileStructW
OutputDebugStringW
GetDateFormatA
LoadLibraryA
OpenMutexA
GetEnvironmentVariableW
GetLastError
FindResourceW
FormatMessageW
GetSystemInfo

msvcrt

isalnum
__winitenv
_ismbblead
isupper
_dup2
_spawnvp
_ismbcprint
__p__pwctype
_ismbbkprint
ispunct
fgetws
isspace
_ltoa
isprint
_tolower
__badioinfo
_lseek
gmtime
fgets
memcpy
ldexp
_msize
_sleep
_ui64toa

user32

EnableMenuItem
LoadStringA
DrawMenuBar
SetForegroundWindow
GetDC
GetDlgItemTextW
CloseClipboard
GetKeyState
UpdateWindow
IsDlgButtonChecked
SetFocus
ModifyMenuW
OpenWindowStationW
OffsetRect

gdi32

GetPaletteEntries
CreateCompatibleBitmap
GetCurrentObject
CreateRectRgn
SetDIBitsToDevice
SetTextColor
SetMapMode
SetPixel
GetTextExtentPoint32W
CreateFontIndirectW
CreateSolidBrush

Sections

.text
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 64KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 118B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

54adf8e46c114087b96c608725c31c81

Headers

File Characteristics

Imports

kernel32

msvcrt

user32

gdi32

Sections

.text Size: 5KB - Virtual size: 4KB

.rdata Size: 2KB - Virtual size: 2KB

.edata Size: 1KB - Virtual size: 1KB

.data Size: 9KB - Virtual size: 8KB

.rsrc Size: 64KB - Virtual size: 64KB

.reloc Size: 512B - Virtual size: 118B

.text
Size: 5KB - Virtual size: 4KB

.rdata
Size: 2KB - Virtual size: 2KB

.edata
Size: 1KB - Virtual size: 1KB

.data
Size: 9KB - Virtual size: 8KB

.rsrc
Size: 64KB - Virtual size: 64KB

.reloc
Size: 512B - Virtual size: 118B