1d8e5ac44e0ca17354300dc75c23e53a

General

Target

1d8e5ac44e0ca17354300dc75c23e53a
Size

52KB
MD5

1d8e5ac44e0ca17354300dc75c23e53a
SHA1

a1c646735f8c865db08b34a6ef395bdc6f1d77f6
SHA256

1739150095d76880afd091aba57ba71471ddf1cba5d8f7c188feab522edf8ad0
SHA512

98f9bcc352bdb4b9533e476bb1bc68b4a1bb271f15d963a0b02c9add1ec4540a5ea5045f9c3aa5a275494e8f4e9ecf12119a04c4e16206e7bc807d2b5bfe0610
SSDEEP

1536:rLiKjfM3zrjTRyiRcWq4Tdv/HIVwssOLxSRRf1IJ:flfMH/gihdHHIVSf1I

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1d8e5ac44e0ca17354300dc75c23e53a

Files

1d8e5ac44e0ca17354300dc75c23e53a
.exe windows:5 windows x86 arch:x86

5d37fa6a0f5f44836d64294339968da7

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

LoadCursorW
ExitWindowsEx
GetKeyboardState
CloseWindowStation
GetClassNameW
ToUnicode
GetDlgItemTextW
GetDlgItem
SetThreadDesktop
PeekMessageW
SetProcessWindowStation
GetKeyState
CharLowerBuffA
OpenWindowStationA
GetCursorPos
DrawIcon
GetWindowTextW
FindWindowExW
GetWindowLongW
OpenDesktopA
GetWindowThreadProcessId
GetDlgItemTextA
CloseDesktop
EndDialog
GetClipboardData
MsgWaitForMultipleObjects
GetMessageW
GetIconInfo
PeekMessageA
SendMessageW
GetMessageA
DispatchMessageW
GetForegroundWindow

kernel32

CreateFileW
lstrcmpiA
ResetEvent
WriteFile
lstrcpyA
lstrlenA
SetFileAttributesW
MapViewOfFile
GetFileSize
CreateThread
CreateEventW
GetExitCodeProcess
FlushFileBuffers
lstrcpynW
WideCharToMultiByte
SystemTimeToFileTime
MoveFileExW
lstrcatA
GetCurrentThreadId
SetLastError
lstrlenW
OpenProcess
GetSystemTimeAsFileTime
LeaveCriticalSection
IsBadReadPtr
OpenMutexW
GetTickCount
GetTempPathW
DeleteFileW
GetUserDefaultUILanguage
GetProcessTimes
EnterCriticalSection
GetModuleFileNameW
GlobalUnlock
GetVersionExW
GetProcessHeap
GlobalLock
GetFileTime
ExpandEnvironmentStringsW
GetLastError
CreateMutexW
CreateProcessW
GetThreadPriority
lstrcmpiW
GetTimeZoneInformation
DisconnectNamedPipe
FindClose
ReleaseMutex
SetFileTime
HeapAlloc
lstrcatW
ReadFile
CreateFileMappingW
CloseHandle
SetThreadPriority
MultiByteToWideChar
GetLocalTime

Sections

.lmj
Size: 19KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.qxajet
Size: 5KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pevuv
Size: 1024B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.spcx
Size: 26KB - Virtual size: 132KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5d37fa6a0f5f44836d64294339968da7

Headers

File Characteristics

Imports

user32

kernel32

Sections

.lmj Size: 19KB - Virtual size: 40KB

.qxajet Size: 5KB - Virtual size: 10KB

.pevuv Size: 1024B - Virtual size: 1KB

.spcx Size: 26KB - Virtual size: 132KB

.lmj
Size: 19KB - Virtual size: 40KB

.qxajet
Size: 5KB - Virtual size: 10KB

.pevuv
Size: 1024B - Virtual size: 1KB

.spcx
Size: 26KB - Virtual size: 132KB