1dfb09fa36919038ea7f0bb67c7554f7

Sharing

Copy URL Twitter E-mail

General

Target

1dfb09fa36919038ea7f0bb67c7554f7
Size

223KB
MD5

1dfb09fa36919038ea7f0bb67c7554f7
SHA1

66be09b618006a83cdea627f690c2fb4b7c01970
SHA256

46e81679c545dc1f665ff2c8bbde10248ae8c9e8e0e246d2416444008c6c3c9c
SHA512

590cb326bfcafcce79460aa232a395550f2a1aefd38d1fca52a01fa409c1471fdab476cf26042bfa9a61cf465b02e7c062e6d1780dc040c8d5fa88438e2d96f1
SSDEEP

6144:LL0BXJftuA98iQV2CCBlVY/na8twQx1G94XYA058T/y:LWXomBlyy8trGWYz+

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1dfb09fa36919038ea7f0bb67c7554f7

Files

1dfb09fa36919038ea7f0bb67c7554f7
.exe windows:5 windows x86 arch:x86

6ad8d2f503a2ce19924d19c2cc848934

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

DPtoLP
FillRgn
CreateCompatibleDC
GetTextExtentPointA
CreatePalette
TextOutA
SetPixel
EndPage
CreateHalftonePalette
GetNearestPaletteIndex
CreateFontIndirectA
SetMapMode
ExtFloodFill

user32

SetMenu
ShowScrollBar
MoveWindow
GetNextDlgGroupItem
MessageBoxExA
LoadIconW
GrayStringW
MapWindowPoints
CreatePopupMenu
OpenIcon
CreateDialogIndirectParamW
IsCharAlphaW
DrawTextExW
CharNextW
ReplyMessage
IntersectRect
SetWindowTextA
DispatchMessageW
GetClassInfoA
SendMessageW
SetDlgItemTextA
LoadAcceleratorsW
GetUserObjectInformationW
CreateIconFromResource
SetSysColors
WaitMessage
GetMenu
TranslateMessage

shlwapi

StrChrW

shell32

ord195
ord196

comdlg32

ChooseFontW
CommDlgExtendedError
GetOpenFileNameW
PrintDlgExW

kernel32

GlobalAddAtomW
SetErrorMode
CreateNamedPipeA
CreatePipe
lstrcpyA
GlobalAddAtomA
HeapValidate
HeapUnlock
GetModuleHandleW
TryEnterCriticalSection
GlobalMemoryStatus
SetFileAttributesW
GetStdHandle
FindResourceExW
SearchPathW
CreateMutexA

Exports

Exports

?DUIidJLdlukydILKDFyiuITFUf6utydyifdikgfgfdhgfd@@YGKEPA_WG@Z

Sections

.text
Size: 137KB - Virtual size: 136KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 70KB - Virtual size: 70KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.mdata
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 161KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6ad8d2f503a2ce19924d19c2cc848934

Headers

File Characteristics

Imports

gdi32

user32

shlwapi

shell32

comdlg32

kernel32

Exports

Exports

Sections

.text Size: 137KB - Virtual size: 136KB

.rdata Size: 70KB - Virtual size: 70KB

.mdata Size: 11KB - Virtual size: 11KB

.data Size: 1KB - Virtual size: 161KB

.rsrc Size: 512B - Virtual size: 16B

.reloc Size: 1KB - Virtual size: 1KB

.text
Size: 137KB - Virtual size: 136KB

.rdata
Size: 70KB - Virtual size: 70KB

.mdata
Size: 11KB - Virtual size: 11KB

.data
Size: 1KB - Virtual size: 161KB

.rsrc
Size: 512B - Virtual size: 16B

.reloc
Size: 1KB - Virtual size: 1KB