1e416eec93e2721289bd7f630bbf0f78

Sharing

Copy URL Twitter E-mail

General

Target

1e416eec93e2721289bd7f630bbf0f78
Size

174KB
MD5

1e416eec93e2721289bd7f630bbf0f78
SHA1

4d079f50cbb644be61ea74892e8b05b5c907239e
SHA256

e18bc8097d3db9c34238e9362720c161c0e66be5d903479e6e873d30222a254a
SHA512

c928f00eba155dedd8b066b9882e413c21ce70e4811b7248a3900068851c3925f67bc24c54ff7e0ae2f2b2c2a4033925531e0803ac57f76b6eb00ab642bd3d7e
SSDEEP

3072:5XzM/X4bWy3mgotfUaCdcw/xlq0tE1gT4NK8oezBT9TUGQvxoC:5jeXCvTaCdcw/7PNT4g8/zLwGQZoC

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1e416eec93e2721289bd7f630bbf0f78

Files

1e416eec93e2721289bd7f630bbf0f78
.exe windows:4 windows x86 arch:x86

1e4bfbf599c3b7ed611872d98dfc76a1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ole32

CoFreeUnusedLibraries
CoInitialize
StringFromGUID2
CoUninitialize
CoCreateInstance

winmm

timeGetTime

msimg32

AlphaBlend
TransparentBlt

comctl32

ImageList_DragLeave
ImageList_DragMove
ImageList_DragEnter

user32

ClipCursor
IsWindow
RedrawWindow
InvalidateRect
TrackPopupMenuEx
SetCursor
GetFocus
SetParent
SetWindowPos
DestroyMenu
CreatePopupMenu
GetDesktopWindow
LoadCursorW
EnableWindow
FindWindowA
PtInRect

gdi32

StretchBlt
GetObjectType
SetStretchBltMode
CreateDCW
LineTo
DeleteDC
BitBlt
CreatePen
CreateCompatibleDC
SelectObject
CreateDIBSection
CreateBitmap

advapi32

RegSetValueW
RegSetValueExW
RegCloseKey
RegOpenKeyExW
RegDeleteKeyW
RegQueryValueExW
RegCreateKeyW
RegEnumKeyExW

kernel32

GlobalLock
WaitCommEvent
GetModuleFileNameA
LoadLibraryW
ExitProcess
CloseHandle
WaitCommEvent
GetTickCount
GetFullPathNameW
GetCurrentThreadId
DisableThreadLibraryCalls
LocalAlloc
EnumResourceNamesW
ReadFile
LocalFree
CreateFileW
ExitProcess
GetVersionExA
GetSystemTimeAsFileTime
GetCurrentProcessId
GlobalAlloc
GlobalUnlock

gdiplus

GdipGetImagePixelFormat
GdipGetImageHeight
GdipGetImageWidth
GdipCreateBitmapFromFile
GdipDisposeImage

Sections

.text
Size: 128KB - Virtual size: 128KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsr
Size: 512B - Virtual size: 336KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1e4bfbf599c3b7ed611872d98dfc76a1

Headers

File Characteristics

Imports

ole32

winmm

msimg32

comctl32

user32

gdi32

advapi32

kernel32

gdiplus

Sections

.text Size: 128KB - Virtual size: 128KB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 42KB - Virtual size: 41KB

.rsr Size: 512B - Virtual size: 336KB

.text
Size: 128KB - Virtual size: 128KB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 42KB - Virtual size: 41KB

.rsr
Size: 512B - Virtual size: 336KB