070a954fd151ec67b3c31e4622ff604e

General

Target

070a954fd151ec67b3c31e4622ff604e
Size

126KB
MD5

070a954fd151ec67b3c31e4622ff604e
SHA1

d27e89cd533f23100f7564a448560f9b6d4277de
SHA256

77e7fd40b8d437652c1c5fdd13e7fcccbaa390bd42bac85ab0ad8bd9ccdd0b5c
SHA512

d0506a5dc26fdd7aecb6440ae8c7781a6f2250d1527b201ec169f7d61e6be3a41361fc1553a6998ac7d30968199887138050b79e0b84f1cc124a5ec2e197b037
SSDEEP

3072:lBdZR8P9/OO0jU84vUfcG6/PxUXEHhEl31816Xh6lu:lDEPdJ0jU84vYcGQSXEHhEl318oX

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
070a954fd151ec67b3c31e4622ff604e

Files

070a954fd151ec67b3c31e4622ff604e
.exe windows:5 windows x86 arch:x86

01985889ba3784570dab8f66d9751335

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

WriteConsoleW
VirtualAlloc
IsDebuggerPresent
GetCurrentProcessId
GetCurrentProcess
OutputDebugStringW
ExitProcess
GetCurrentThreadId
CompareStringA
FileTimeToSystemTime
SetEndOfFile
GetModuleFileNameW

ole32

ReleaseStgMedium
CoTaskMemAlloc
StringFromGUID2
CoCreateGuid
MkParseDisplayName
OleRegGetUserType
OleRun
StgCreateDocfileOnILockBytes
CoDisconnectObject

user32

CheckRadioButton
GetSystemMetrics
GetSysColor
DragObject
GetClientRect
SetCapture
SetDlgItemTextW
GetMenu
GetCapture
PeekMessageW
RegisterClipboardFormatW
GetMessageA
GetActiveWindow
GetWindowTextA
ClipCursor
GetWindowDC
GetWindow
GetDC
GetCursorPos

oleaut32

SysAllocStringLen
VariantCopy
LoadTypeLib
SafeArrayUnaccessData
OleLoadPicture
VariantChangeTypeEx
SysFreeString
VariantCopyInd
GetActiveObject

msvcrt

isleadbyte
srand
__p__iob
__set_app_type
__CxxFrameHandler
_rotr
_ltow
_rotl
__p__commode
__setusermatherr
isalnum
_commit
wcspbrk
sscanf
isalpha
ctime
_stricmp
_controlfp
_access
__p__fmode
_ftol
_chsize

Sections

.text
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 58KB - Virtual size: 57KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 60KB - Virtual size: 171KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 481B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

01985889ba3784570dab8f66d9751335

Headers

File Characteristics

Imports

kernel32

ole32

user32

oleaut32

msvcrt

Sections

.text Size: 6KB - Virtual size: 5KB

.rdata Size: 58KB - Virtual size: 57KB

.data Size: 60KB - Virtual size: 171KB

.reloc Size: 512B - Virtual size: 481B

.text
Size: 6KB - Virtual size: 5KB

.rdata
Size: 58KB - Virtual size: 57KB

.data
Size: 60KB - Virtual size: 171KB

.reloc
Size: 512B - Virtual size: 481B