0694f8541954d326d8818a81feda7525

General

Target

0694f8541954d326d8818a81feda7525
Size

272KB
MD5

0694f8541954d326d8818a81feda7525
SHA1

1721d74ff7fd72561d62da2f15580a20cd5fef3d
SHA256

dce150390aff7b357e10c88ed15c462ea7ac398bae14430042b2b5d4e44bb797
SHA512

7186521e61b45bedfc37f4f0e7f5586db0828ee35783b00ecdae6fb15ce0dbbf081dc62b074b548cb4b70d4df0740ee77b9c66219301819d33912c02a5cba7fe
SSDEEP

6144:AgHBiVe0zpCj8wkePAeNDliPE6eXMS9U9F4ZsMW:xEFzpCj8wkePAeNs2HhOh

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0694f8541954d326d8818a81feda7525

Files

0694f8541954d326d8818a81feda7525
.exe windows:4 windows x86 arch:x86

b73fa82cb519d7009d485e37b97f8868

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

BackupRead
CloseHandle
DeleteAtom
ExitProcess
FindResourceExA
GetACP
GetCalendarInfoW
GetCommandLineW
GetConsoleTitleW
GetProcessAffinityMask
GetProcessTimes
GetProfileSectionA
GetSystemTimeAsFileTime
GetVersion
GlobalUnWire
InterlockedExchange
IsBadHugeReadPtr
IsBadStringPtrA
IsProcessorFeaturePresent
MoveFileA
ReadConsoleOutputCharacterA
SetHandleInformation
SetProcessWorkingSetSize
WaitForDebugEvent
_lwrite
lstrcmpi

user32

CallWindowProcW
ChangeClipboardChain
CloseWindow
CopyIcon
DialogBoxIndirectParamA
DispatchMessageW
DlgDirSelectExA
DlgDirSelectExW
DrawIconEx
EnableMenuItem
EndDialog
EndMenu
EnumThreadWindows
EqualRect
ExcludeUpdateRgn
GetAsyncKeyState
GetClassNameA
GetDlgItemTextA
GetMenuInfo
GetOpenClipboardWindow
GetUserObjectInformationW
GetUserObjectSecurity
LoadMenuW
MapVirtualKeyW
MessageBeep
MessageBoxA
MessageBoxIndirectA
OemToCharBuffA
SendDlgItemMessageA
UnregisterClassW

gdi32

BitBlt
CopyMetaFileW
CreateBrushIndirect
CreateCompatibleBitmap
CreateCompatibleDC
CreateFontIndirectA
CreatePolyPolygonRgn
CreateRectRgnIndirect
EnumICMProfilesA
GetClipRgn
GetEnhMetaFileDescriptionW
GetKerningPairsA
GetMetaRgn
GetTextExtentPoint32W
OffsetRgn
RoundRect
SelectClipPath
SetBrushOrgEx
SetICMProfileW
SwapBuffers
UpdateICMRegKeyW

Sections

Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 268KB - Virtual size: 272KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 528KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b73fa82cb519d7009d485e37b97f8868

Headers

File Characteristics

Imports

kernel32

user32

gdi32

Sections

Size: 512B - Virtual size: 4KB

.data Size: 268KB - Virtual size: 272KB

.rsrc Size: 2KB - Virtual size: 528KB

.data
Size: 268KB - Virtual size: 272KB

.rsrc
Size: 2KB - Virtual size: 528KB