73f4635d668b8c8277aaea2867e65d5f

Sharing

Copy URL Twitter E-mail

General

Target

73f4635d668b8c8277aaea2867e65d5f
Size

25KB
MD5

73f4635d668b8c8277aaea2867e65d5f
SHA1

620e672e32dbb8c056b517131c50b827aa0a900e
SHA256

4a03b4447a9385abb6fc2e64a31ec95c1638bdffb94866fdea6645348cd5a63e
SHA512

0676a8dcfb8600b17cc9a4a73d4d58c8965dea66c4947dc842695d3b8cc874c561442ed25d3e237dd5f9ceab9b5992fd5655e738ab49b94a14a040509bd7acf2
SSDEEP

384:DNCbwaEghu9MI0pc5D3UpM+v2stNpFq9F5W/L1bqiwGo3JsbNtqsVE3Le:DNCMRghJITop3tNpFqfkxqlGSWpt/v

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
73f4635d668b8c8277aaea2867e65d5f

Files

73f4635d668b8c8277aaea2867e65d5f
.exe windows:4 windows x86 arch:x86

1eaef73d7897e906abfec7711e6f6e78

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcmpA
LocalAlloc
GetVolumeInformationA
GetFileAttributesA
SetFileAttributesA
_lopen
GetCurrentDirectoryA
GetModuleFileNameA
CloseHandle
DeleteFileA
CreateFileA
LocalFileTimeToFileTime
SetFileTime
LocalFree
_lclose
_llseek
WriteFile
RaiseException
lstrcpynA
lstrcatA
lstrcpyA
CreateDirectoryA
_lread
SystemTimeToFileTime
ExpandEnvironmentStringsA
lstrlenA
GetStartupInfoA
GetModuleHandleA

user32

SendDlgItemMessageA
SetFocus
EnableWindow
GetDlgItem
GetDlgItemTextA
SetWindowTextA
EndDialog
LoadIconA
IsIconic
DestroyIcon
MoveWindow
GetSystemMetrics
SendMessageA
DialogBoxParamA
GetWindowRect
GetFocus
GetDlgCtrlID
PostMessageA
SetDlgItemTextA
PeekMessageA
IsDialogMessageA
TranslateMessage
DispatchMessageA
wsprintfA
MessageBoxA
CharPrevA
EndPaint
DrawIcon
BeginPaint

gdi32

SetMapMode
GetMapMode

comdlg32

GetOpenFileNameA
GetFileTitleA

shell32

ShellExecuteA

crtdll

_commode_dll
__GetMainArgs
_fmode_dll
_global_unwind2
localtime
strchr
strrchr
_getcwd
_initterm
_local_unwind2
_exit
_XcptFilter
exit
_acmdln_dll

Exports

Exports

GetDirDlgHookProc

Sections

.text
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 177B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 424B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 512B - Virtual size: 8B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1eaef73d7897e906abfec7711e6f6e78

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

shell32

crtdll

Exports

Exports

Sections

.text Size: 9KB - Virtual size: 8KB

.rdata Size: 512B - Virtual size: 177B

.data Size: 512B - Virtual size: 424B

.idata Size: 2KB - Virtual size: 2KB

.CRT Size: 512B - Virtual size: 8B

.rsrc Size: 2KB - Virtual size: 1KB

.text
Size: 9KB - Virtual size: 8KB

.rdata
Size: 512B - Virtual size: 177B

.data
Size: 512B - Virtual size: 424B

.idata
Size: 2KB - Virtual size: 2KB

.CRT
Size: 512B - Virtual size: 8B

.rsrc
Size: 2KB - Virtual size: 1KB