72b190d7acfb8d7ea24f49d800fd17e5

General

Target

72b190d7acfb8d7ea24f49d800fd17e5
Size

17KB
MD5

72b190d7acfb8d7ea24f49d800fd17e5
SHA1

8c8aa943e336c65fba1242fbad228c500195b617
SHA256

98b860ef041cd37f110535883c7ad09d484cf8949e82ff44ef456a90e60fcde7
SHA512

b4a0e3221759ea20cc1f93561ef4d0fd360ef49bab7ab2e44689acaea86b648f08f336de87113b02d742d4b906f0766bdf7bdc45dac12dfc5fefb20e2bd8ae03
SSDEEP

384:QRtvLM6HqbRA5RuI9OuJVr0xoul/Y9gKkrJvMOmmlMn:Mvg6HqbRCuqOuJVYxz/FJvMvmlMn

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
72b190d7acfb8d7ea24f49d800fd17e5

Files

72b190d7acfb8d7ea24f49d800fd17e5
.exe windows:28133 windows x86 arch:x86

014dd7c965517d86f91da20b116e8040

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCommandLineW
GetCurrentProcessId
GetProcAddress
UnhandledExceptionFilter
WriteFile
LocalFree
HeapDestroy
lstrcmpiW
GetTickCount
GetVersionExA
VirtualAlloc
WriteFile
SetUnhandledExceptionFilter
VirtualAlloc
VirtualAlloc
lstrcpyW
VirtualAlloc
LoadLibraryW
UnhandledExceptionFilter
SetEvent
GetModuleFileNameA
SetLastError
GetTickCount
GetTickCount
GetModuleHandleW
ReadFile
HeapAlloc
GetModuleFileNameA
VirtualFree
lstrcpyW
WriteFile
VirtualAlloc
UnhandledExceptionFilter
GetACP
lstrcpyW
lstrcmpiW
lstrcpyW
CreateFileW
GetStartupInfoW
GetCurrentProcess
GetProcessHeap
GetCurrentProcessId
GetACP
GetProcAddress
LeaveCriticalSection
CreateFileW
LoadLibraryW
lstrcpyW
GetModuleFileNameA

user32

MapWindowPoints
SystemParametersInfoW
InvalidateRect
DestroyWindow
IsDlgButtonChecked
InvalidateRect
SendMessageA
GetWindowRect
LoadStringA
MessageBoxW
GetSubMenu
DispatchMessageW
OffsetRect
DestroyMenu
LoadStringW
GetClientRect
GetDesktopWindow
CharNextW
DefWindowProcW
GetSystemMenu
WinHelpW
LoadCursorW
MoveWindow
GetDlgItemTextW
EndPaint
SendMessageA
GetDlgItem
SetFocus
GetSubMenu
SendMessageW
SendMessageA
TranslateMessage
CopyRect
CharNextW
wsprintfW
PostMessageW
EnableMenuItem
GetSubMenu
MapWindowPoints
DispatchMessageW
SetDlgItemTextW
EndPaint

Sections

.text
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

014dd7c965517d86f91da20b116e8040

Headers

File Characteristics

Imports

kernel32

user32

Sections

.text Size: 8KB - Virtual size: 8KB

.data Size: 5KB - Virtual size: 16KB

.rdata Size: 2KB - Virtual size: 4KB

.rsrc Size: 1024B - Virtual size: 4KB

.text
Size: 8KB - Virtual size: 8KB

.data
Size: 5KB - Virtual size: 16KB

.rdata
Size: 2KB - Virtual size: 4KB

.rsrc
Size: 1024B - Virtual size: 4KB