0639eaee60e4b17cf2bc3faebd9e223e

General

Target

0639eaee60e4b17cf2bc3faebd9e223e
Size

52KB
MD5

0639eaee60e4b17cf2bc3faebd9e223e
SHA1

6d08465b4741cafcf3941960687777bfc618fce1
SHA256

f47543f70909dc9bfa3d0ee5cf91c6342ff1d074837db8087daff0e138f550ec
SHA512

83bae474778d34522e6e168ef56e50466a71bba78da9c1dae08939bcce8fa9a7d9e2adcb90c659eb63528e7f9d7eab26ac4e19233c2d7dedc575e45485b5afed
SSDEEP

768:SXZg8PxMGUnR9blf/jnZP3TvOqSWdgAtvjdvB4xD:SXZgsxPYjblTnZKpWdgsj5B4x

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0639eaee60e4b17cf2bc3faebd9e223e

Files

0639eaee60e4b17cf2bc3faebd9e223e
.exe windows:4 windows x86 arch:x86

3e09525e0794397913588ab3a563ae17

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

TerminateThread
CancelWaitableTimer
SizeofResource
GetCurrentThread
FindNextChangeNotification
GetFileAttributesW
CreateThread
GetProcAddress
lstrcpyW
SetThreadPriority
GetCurrentThreadId
LoadLibraryA
GlobalLock
SetFilePointer
MulDiv
CreateWaitableTimerW
WriteFile
ResetEvent
GetUserDefaultLangID
ReadFile
FreeResource
FindResourceExW
WideCharToMultiByte
GetCurrentProcess
FreeLibrary

user32

EndDialog
SystemParametersInfoW
RedrawWindow
SendMessageW
GetWindowThreadProcessId
CreateWindowExW
AppendMenuW
DefWindowProcW
LoadCursorW
RegisterWindowMessageW
DestroyIcon
GetCursorPos
ReleaseCapture
GetWindowTextW
RegisterClassExW
GetWindowDC
SetCursorPos
DispatchMessageW
SetDlgItemTextW
DialogBoxParamW
WindowFromPoint
MessageBoxW
TrackPopupMenu
GetWindowRect
SendDlgItemMessageW
DestroyMenu
LoadImageW
OffsetRect
SetLayeredWindowAttributes
LoadBitmapW

gdi32

SelectObject
CreateRoundRectRgn
Rectangle
SetTextColor
CreateFontIndirectW
SetBkMode
DeleteObject
GetMapMode
SetBkColor
GetDeviceCaps
CreateSolidBrush
LineTo

advapi32

RegQueryValueExW
RegCloseKey

Sections

.text
Size: 40KB - Virtual size: 39KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 1024B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

3e09525e0794397913588ab3a563ae17

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

Sections

.text Size: 40KB - Virtual size: 39KB

.rdata Size: 4KB - Virtual size: 1KB

.data Size: 4KB - Virtual size: 1024B

.text
Size: 40KB - Virtual size: 39KB

.rdata
Size: 4KB - Virtual size: 1KB

.data
Size: 4KB - Virtual size: 1024B