20382cd32ca75a220d98f6ee0321a2a4

General

Target

20382cd32ca75a220d98f6ee0321a2a4
Size

40KB
MD5

20382cd32ca75a220d98f6ee0321a2a4
SHA1

58e4d6efce82cfa77f29f1afef84c7681cca57dd
SHA256

b0ea872f6a7bd9c8636a4e5438bcb8091e029a910ba01b09fd6b111a109b3f4f
SHA512

b4dcc0135c00e0efb7627500178b0b5485204064066da3b45dabac4508599a1d0a91c4310ae844b60e6b3e6c866c1bf8a9ef606b00ac6e3a95a9e778bfd9d28f
SSDEEP

768:z3j/a7Be4cN/JZamsSGa8/PLkl4s+B7Zw:jOVHe/DhpSzkg

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
20382cd32ca75a220d98f6ee0321a2a4

Files

20382cd32ca75a220d98f6ee0321a2a4
.exe windows:4 windows x86 arch:x86

47a486f09860fe1ba03083906fac8e40

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

ImageList_GetImageInfo
ImageList_DrawEx
ImageList_LoadImageW
ImageList_AddMasked
ImageList_Destroy
ImageList_EndDrag
ImageList_GetIcon
ImageList_AddIcon
InitCommonControls
ImageList_ReplaceIcon
ImageList_Merge
ImageList_Create
ImageList_Read
ImageList_DragMove
ImageList_GetIconSize
ImageList_LoadImageA
ImageList_DragShowNolock
ImageList_GetImageRect
ImageList_Replace

user32

BlockInput
CopyImage
LoadMenuA
GetFocus
CopyRect
GetMenu
LoadCursorA
CreateIcon
EndDialog
GetWindowTextA
DrawIconEx
IsWindow
DialogBoxParamW
AppendMenuA
CloseWindow
DrawTextA
DrawIcon
GetDlgItem
GetWindowTextLengthA

advapi32

RegDeleteKeyW
RegCreateKeyExW
RegOpenKeyExW
RegQueryValueExW
RegCreateKeyW
RegOpenKeyW
RegDeleteKeyA
RegQueryValueExA
RegEnumValueA
RegEnumKeyExW
RegLoadKeyW
RegGetKeySecurity
RegCreateKeyExA
RegDeleteValueW
RegQueryValueW
RegQueryValueA
RegQueryInfoKeyW
RegReplaceKeyA

kernel32

lstrlenA
WideCharToMultiByte
SetLastError
GetLastError
GetStdHandle
HeapFree
lstrcpyA
GetFileType
DeleteFileA
GlobalFree
FreeLibrary
GetFileSize
lstrcmpA
CloseHandle
GetCPInfo
GetModuleHandleA
GetStringTypeA
GetStringTypeW
GetCommandLineA
Sleep

Sections

.text
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 24KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 4KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsr�
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

47a486f09860fe1ba03083906fac8e40

Headers

File Characteristics

Imports

comctl32

user32

advapi32

kernel32

Sections

.text Size: 4KB - Virtual size: 2KB

.data Size: 24KB - Virtual size: 23KB

.rdata Size: 4KB - Virtual size: 64KB

.rsr� Size: 4KB - Virtual size: 2KB

.text
Size: 4KB - Virtual size: 2KB

.data
Size: 24KB - Virtual size: 23KB

.rdata
Size: 4KB - Virtual size: 64KB

.rsr�
Size: 4KB - Virtual size: 2KB