008f52b4f1485fd78b5183df8d5dbf6d

General

Target

008f52b4f1485fd78b5183df8d5dbf6d
Size

74KB
MD5

008f52b4f1485fd78b5183df8d5dbf6d
SHA1

ab86d65776e4a3cd41eb2b0aee7d3856fcd03f35
SHA256

76fff9e5437acbc651475963b97e5490303a40e769ccd0b596b8de7e7c0a0fb4
SHA512

5272359baca9acc21993519744af8db074be938e5481384a694f8905d5d679eeefae348ca52f6023581189cc2504a755dc8ec3871b338b2b43df0b64b45f550a
SSDEEP

1536:CYyExdQ+yTHnY3YUu5i70dhN6IRluCsItsWY:ByE0+uY3FeiqcChsWY

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
008f52b4f1485fd78b5183df8d5dbf6d

Files

008f52b4f1485fd78b5183df8d5dbf6d
.exe windows:4 windows x86 arch:x86

90da45cdbb37b969878e53a8a1c7b042

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

LoadMenuA
EndDialog
DialogBoxParamW
DialogBoxParamA
CreateIcon
InsertMenuA
AppendMenuW
GetWindowTextLengthA
DrawTextA
CloseWindow
BlockInput
GetCursor
CopyIcon
DrawTextW
GetFocus
GetMenu

comctl32

ImageList_EndDrag
ImageList_DrawIndirect
ImageList_Replace
ImageList_GetIcon
ImageList_Destroy
ImageList_BeginDrag
ImageList_LoadImageA
ImageList_GetIconSize
ImageList_Copy
ImageList_Read
ImageList_GetImageInfo
ImageList_GetImageRect
ImageList_Merge
ImageList_Remove
InitCommonControls
ImageList_Create

advapi32

RegQueryValueExA
RegDeleteKeyW
RegEnumKeyExA
RegLoadKeyW
RegFlushKey
RegReplaceKeyW
RegCreateKeyExA
RegLoadKeyA
RegDeleteValueW
RegOpenKeyExW
RegQueryInfoKeyW
RegGetKeySecurity
RegEnumKeyExW
RegEnumValueW
RegCreateKeyExW
RegOpenKeyA
RegQueryValueW
RegQueryInfoKeyA

kernel32

GetLastError
HeapAlloc
GetModuleFileNameA
lstrcpyA
GetStringTypeW
GetModuleHandleA
HeapFree
GetCommandLineA
GetCPInfo
CloseHandle
GetStringTypeA
lstrcmpiA
GetDateFormatA
GetFileSize
GetLocalTime
FreeLibrary
GetStdHandle
GetFileAttributesA
WideCharToMultiByte
GlobalAlloc

Sections

.text
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.adata
Size: 25KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.hdata
Size: 3KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.res
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

90da45cdbb37b969878e53a8a1c7b042

Headers

File Characteristics

Imports

user32

comctl32

advapi32

kernel32

Sections

.text Size: 10KB - Virtual size: 9KB

.adata Size: 25KB - Virtual size: 24KB

.hdata Size: 3KB - Virtual size: 18KB

.res Size: 2KB - Virtual size: 1KB

.text
Size: 10KB - Virtual size: 9KB

.adata
Size: 25KB - Virtual size: 24KB

.hdata
Size: 3KB - Virtual size: 18KB

.res
Size: 2KB - Virtual size: 1KB