018f1244f63dfdfd594f5fb7e9e40b34

General

Target

018f1244f63dfdfd594f5fb7e9e40b34
Size

10KB
MD5

018f1244f63dfdfd594f5fb7e9e40b34
SHA1

e0352bf473272775994d698e40c5f72d7e61b0d4
SHA256

d2ba35834c0acbfbdf0690a9604db7c841900e611b66ae83e3822a77db034cd9
SHA512

f85e42d2ef86bfeecb20ff720aee78fe4018cc2021f672cc1e59348ab7a232940a665515c3811b0299d20c4bef6495a9d6b377b22ad7c9a7efdd371aad2d329a
SSDEEP

192:epnEEEMUYWSig3BTyCwqRzhCZ4iGb+F6IziCEIxExUML5+WgSQtA1Hd+WUW:eSrTKieTZbRzhy4iGCF6IziCEMqBU/t+

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
018f1244f63dfdfd594f5fb7e9e40b34

Files

018f1244f63dfdfd594f5fb7e9e40b34
.exe windows:4 windows x86 arch:x86

1c294cb07e7c80c50caef929af3d07cf

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ConvertDefaultLocale
CreateMutexW
EnumTimeFormatsA
ExitProcess
GetCalendarInfoW
GetCommState
GetLongPathNameW
GetQueuedCompletionStatus
GetTempFileNameA
GetVolumeInformationW
GlobalMemoryStatus
GlobalReAlloc
Heap32ListFirst
HeapCompact
HeapDestroy
IsBadStringPtrA
MapViewOfFileEx
OpenEventW
ReadProcessMemory
RequestDeviceWakeup
SetConsoleWindowInfo
SetLocalTime
SetTimeZoneInformation
lstrcmpiA

user32

CallMsgFilterW
CallNextHookEx
CheckDlgButton
CheckMenuItem
CloseWindow
CreateMDIWindowA
CreateWindowExW
DdeCmpStringHandles
DestroyIcon
EndTask
EnumWindowStationsW
EqualRect
GetDlgItemTextA
GetMenuBarInfo
GetMenuItemInfoA
GetMenuStringA
GetScrollPos
GetThreadDesktop
GetWindowModuleFileNameW
GetWindowTextA
IsWindowUnicode
LoadCursorW
OpenWindowStationA
RealChildWindowFromPoint
SetKeyboardState
SetWindowPlacement

gdi32

ColorCorrectPalette
CreateScalableFontResourceW
DPtoLP
DeviceCapabilitiesExW
EnumFontsW
EnumICMProfilesA
GetBkMode
GetCharABCWidthsFloatW
GetCharWidthA
GetClipBox
GetDCOrgEx
GetOutlineTextMetricsA
GetPixelFormat
GetRandomRgn
GetTextColor
GetTextExtentExPointA
GetWindowExtEx
RemoveFontResourceA
RestoreDC
RoundRect
SetBkMode
SetEnhMetaFileBits
SetICMMode
SetPixel
SetROP2

Sections

.text
Size: 512B - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1c294cb07e7c80c50caef929af3d07cf

Headers

File Characteristics

Imports

kernel32

user32

gdi32

Sections

.text Size: 512B - Virtual size: 12KB

.data Size: 8KB - Virtual size: 24KB

.idata Size: - Virtual size: 4KB

.rsrc Size: 1024B - Virtual size: 8KB

.text
Size: 512B - Virtual size: 12KB

.data
Size: 8KB - Virtual size: 24KB

.idata
Size: - Virtual size: 4KB

.rsrc
Size: 1024B - Virtual size: 8KB