01de7541342dfcc2c215ce0d3fe45d80

General

Target

01de7541342dfcc2c215ce0d3fe45d80
Size

134KB
MD5

01de7541342dfcc2c215ce0d3fe45d80
SHA1

1e62c35cc54a68c77acdcb0f8c14e8152d5d173a
SHA256

eb05a39698bbcfc62e595c8d09a89cb1ac201e907b21a7ddd92c5f1f0b8351a1
SHA512

f4433bb2a25fd05b5f2325a31dfe7498360882da72d4dfaf62068d01e81d5befbd779417a77a93ecb099f8e2eaffebc9f56666c6534fc9918d04e04bce654a20
SSDEEP

3072:+TtlbwCjCPwH5fsQHRs55mpkz5Oyy4v7YAGBWOHjQEbgJqsn:etlbwCMCUX5IpkNOlA7YAGBWOHjQEb8T

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
01de7541342dfcc2c215ce0d3fe45d80

Files

01de7541342dfcc2c215ce0d3fe45d80
.exe windows:4 windows x86 arch:x86

6dbd5a47f961e3be63f8ff370b49ff00

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

CreateCompatibleBitmap
GetPixel
EndDoc
CreateBitmap
SelectPalette
PlayEnhMetaFile
LPtoDP
GetCharWidth32A
GetStockObject
RectVisible
SetViewportOrgEx
SetWindowExtEx
LineTo
DPtoLP
PatBlt
SetTextColor
CreatePen
GetTextMetricsA
MaskBlt
GetClipBox
SetDIBColorTable
ScaleViewportExtEx
BitBlt
OffsetViewportOrgEx
SetBkColor
StartPage
GetPaletteEntries
DeleteObject
Rectangle
CreatePatternBrush
PtVisible
SelectClipPath
EndPath
ExcludeClipRect
Chord
BeginPath
SetStretchBltMode
CreateRectRgn
GetDeviceCaps
GetDCOrgEx
GetDIBColorTable
UnrealizeObject
MoveToEx
SetBkMode
StretchBlt

user32

CharNextA

kernel32

GlobalFindAtomA
DeleteFileW
RemoveDirectoryA
lstrcmpiW
GetLastError
CopyFileA
GetModuleHandleA
GetTickCount
GetCommandLineW
GetCurrentProcess
lstrcmpA
GetModuleHandleW
GetCurrentThreadId
MulDiv
GetOEMCP
SetLastError
lstrlenW
GetProcessHeap
SetCurrentDirectoryA
GetThreadLocale
GetVersion
GetCommandLineA
lstrcmpiA
GlobalFindAtomW
GetCurrentProcessId
GetACP
IsDebuggerPresent
GetUserDefaultLangID
lstrlenA
GetCurrentThread
GetConsoleOutputCP
DeleteFileA
VirtualAlloc

Sections

.text
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 103KB - Virtual size: 102KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6dbd5a47f961e3be63f8ff370b49ff00

Headers

File Characteristics

Imports

gdi32

user32

kernel32

Sections

.text Size: 12KB - Virtual size: 11KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 103KB - Virtual size: 102KB

.rsrc Size: 16KB - Virtual size: 15KB

.text
Size: 12KB - Virtual size: 11KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 103KB - Virtual size: 102KB

.rsrc
Size: 16KB - Virtual size: 15KB