03feec6a17e995556c1610085eef75ae

General

Target

03feec6a17e995556c1610085eef75ae
Size

153KB
MD5

03feec6a17e995556c1610085eef75ae
SHA1

06ec028ac2c1c041b8381f19ba68a4325d82f250
SHA256

46ba27a5fcf1653af452066eaf5ea178e4c9f4c4f970ed586c5abda000b33b2b
SHA512

49fffa2ea582cde48af6ba82b8f1e661c826e5a80961e749f98853b96ec4eb9270aee5a2a3fda757aa2de8a71b6b341bc01adecbf47357d6a85fa7589c1d8e0a
SSDEEP

3072:bT18KiTJIHdC4vljYTefT5hWTivK1M1+2F:b5CFadvFYTef/PesNF

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
03feec6a17e995556c1610085eef75ae

Files

03feec6a17e995556c1610085eef75ae
.exe windows:4 windows x86 arch:x86

b571f83ccd5a14c5179851dc23fc91e9

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

time
mbstowcs
wcsncmp
_acmdln
memmove

kernel32

SetHandleCount
SetFilePointer
SetThreadLocale
DeleteFileA
ExitProcess
GetLastError
GetCurrentThreadId
VirtualAllocEx
MulDiv
GetThreadLocale
lstrcmpA
SetLastError
CreateFileA
GetOEMCP
GlobalAddAtomA
LoadLibraryA
LocalAlloc

advapi32

RegLoadKeyA
RegEnumKeyA

ole32

WriteClassStm
CoRegisterClassObject
OleRun
CoDisconnectObject

user32

FindWindowA
GetKeyState
DefMDIChildProcA
GetClipboardData
GetDCEx
GetMenuItemInfoA
TrackPopupMenu
CreateIcon
SetCursor
CallWindowProcA
DefFrameProcA
CharNextA
CreatePopupMenu
GetKeyNameTextA
GetScrollPos
CallNextHookEx

shell32

SHGetFolderPathA

gdi32

GetClipBox
CreateBitmap
CreateCompatibleDC
SetTextColor
CreateFontIndirectA
GetDIBColorTable
SetPixel

Sections

.edata
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 118KB - Virtual size: 118KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

DATA
Size: 4KB - Virtual size: 79KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b571f83ccd5a14c5179851dc23fc91e9

Headers

File Characteristics

Imports

msvcrt

kernel32

advapi32

ole32

user32

shell32

gdi32

Sections

.edata Size: 28KB - Virtual size: 27KB

.data Size: 118KB - Virtual size: 118KB

DATA Size: 4KB - Virtual size: 79KB

.idata Size: 2KB - Virtual size: 1KB

.edata
Size: 28KB - Virtual size: 27KB

.data
Size: 118KB - Virtual size: 118KB

DATA
Size: 4KB - Virtual size: 79KB

.idata
Size: 2KB - Virtual size: 1KB