076076e6cf7e89d664a5c6606ba03ada

General

Target

076076e6cf7e89d664a5c6606ba03ada
Size

68KB
MD5

076076e6cf7e89d664a5c6606ba03ada
SHA1

3d235d1ea5f6d6c8cb943a982339dc1c2102b12d
SHA256

cc1a1fc945abae0d3d65a31eb0836089ced3e98d9660c679f28a37b9525285e3
SHA512

c9d44488ecc21d986dabf1f787a323ff813828d4c3506e6129010b4969605169c87b91ba84ef00c609f74f5d8a1928ba4e67af7d1523da8473357f96d339681f
SSDEEP

1536:XX7K/ql53a/6FMWgNH+7nbB6/ndhbeI43zt:XXKqrghWx7bB6/dhbx43

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
076076e6cf7e89d664a5c6606ba03ada

Files

076076e6cf7e89d664a5c6606ba03ada
.exe windows:4 windows x86 arch:x86

8399da6580de5f8b8318fa90aa49f536

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateEventW
WaitForMultipleObjects
SetEndOfFile
GetCurrentThread
GetModuleFileNameW
MultiByteToWideChar
WriteFile
ReadFile
GetVersion
CreateFileW
SetLastError
InterlockedDecrement
MoveFileW
CloseHandle
LoadLibraryA
GetPrivateProfileStringW
InterlockedIncrement
GetUserDefaultLangID
GetCurrentThreadId
GetFileAttributesExW
GetProcAddress
CreateThread
CancelWaitableTimer
GlobalAddAtomW
WaitForSingleObject
GlobalUnlock
CreateWaitableTimerW

user32

GetCursorPos
DrawTextW
GetWindowThreadProcessId
SetDlgItemTextW
PostQuitMessage
DialogBoxParamW
GetParent
TranslateMessage
GetSysColor
SystemParametersInfoW
LoadCursorW
GetSystemMetrics
DispatchMessageW
GetWindowTextW
ReleaseDC
ReleaseCapture
SendMessageW
DefWindowProcW
LoadBitmapW
OffsetRect

gdi32

CreateFontIndirectW
LineTo
SetTextColor
GetClipBox
CreateBitmap

advapi32

RegOpenKeyExW
LookupPrivilegeValueW
LookupAccountSidW
GetUserNameW
StartServiceW
RegNotifyChangeKeyValue

Sections

.text
Size: 56KB - Virtual size: 53KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

8399da6580de5f8b8318fa90aa49f536

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

Sections

.text Size: 56KB - Virtual size: 53KB

.rdata Size: 4KB - Virtual size: 1KB

.data Size: 4KB - Virtual size: 1KB

.text
Size: 56KB - Virtual size: 53KB

.rdata
Size: 4KB - Virtual size: 1KB

.data
Size: 4KB - Virtual size: 1KB