025b4b83b226e20b408a4f9a006ab7fe

General

Target

025b4b83b226e20b408a4f9a006ab7fe
Size

71KB
MD5

025b4b83b226e20b408a4f9a006ab7fe
SHA1

63466013b90bbd90bf987b945642e0d93a807c0c
SHA256

2aa0fe9bcc34bf593dcecdaef7ac878883d95664490e4dc924ebf58313b7db11
SHA512

5bc3f354d45f91168f68a178c0e6798b5ef618c115a0cfb5b29dff108656d9b067b4a91b93ddffaf11a9496be500435f128308fed5c0ee47e52907757ef89282
SSDEEP

1536:EDNQFuZ1AMlMnd0XL6mdI2Mi94jQpSmvn60jCTZAliIfOT:EDNGuZ1AM+2fdD4jQpSmPnjmA4V

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
025b4b83b226e20b408a4f9a006ab7fe

Files

025b4b83b226e20b408a4f9a006ab7fe
.exe windows:4 windows x86 arch:x86

625914215c99daf29865515d87bb4d90

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

DrawIcon
InsertMenuA
CopyIcon
DialogBoxParamW
GetCursor
IsWindow
EndDialog
LoadMenuA
GetWindowTextA
GetDlgItem
CloseWindow
DrawTextW
DialogBoxParamA
CreateIcon
CopyRect
GetFocus
GetMenu
CopyImage
IsMenu
DrawTextA
GetDC
DrawIconEx

kernel32

GetCurrentProcess
SetFilePointer
CreateFileA
GetStringTypeA
GetModuleFileNameA
GetVersion
LCMapStringA
GetACP
WriteFile
lstrcatA
GetStartupInfoA
lstrcpynA
GetCommandLineA
GetCPInfo
GetFileType
GetOEMCP
MultiByteToWideChar
LCMapStringW
SetHandleCount
GetStringTypeW
lstrcpyA
TerminateProcess
GetStdHandle
lstrcpynW

comctl32

ImageList_Add
InitCommonControls
ImageList_Destroy
ImageList_LoadImageA
ImageList_Copy
ImageList_Draw
ImageList_LoadImageW
ImageList_GetIcon
MenuHelp
ImageList_GetIconSize
DllGetVersion
DrawStatusText
ImageList_DrawEx

advapi32

RegOpenKeyExA
RegDeleteKeyW
RegEnumValueW
RegQueryValueExW
RegEnumKeyW
RegQueryValueA
RegCreateKeyW
RegDeleteKeyA
RegQueryValueExA
RegEnumKeyExA

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 51KB - Virtual size: 17.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 15KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

625914215c99daf29865515d87bb4d90

Headers

File Characteristics

Imports

user32

kernel32

comctl32

advapi32

Sections

.text Size: 2KB - Virtual size: 2KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 51KB - Virtual size: 17.3MB

.rsrc Size: 15KB - Virtual size: 16KB

.text
Size: 2KB - Virtual size: 2KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 51KB - Virtual size: 17.3MB

.rsrc
Size: 15KB - Virtual size: 16KB