20a745e5d1ef049ac0347bf12912bdde

General

Target

20a745e5d1ef049ac0347bf12912bdde
Size

70KB
MD5

20a745e5d1ef049ac0347bf12912bdde
SHA1

92acff7739168b4274c6a254ae233aa41d7b9ba7
SHA256

264292e38868b01d3ad8ad0e89242b544076d13ca46c87d5988ac82dec55e92a
SHA512

7b6bf5cd69fd224550a81af4ee72b4fed0903980a50355e3c6d19e494c9057900ffa63bfc07b1799fe3263d1b3bedba39c35ac63059613aab7dc36112c223d68
SSDEEP

1536:h7h5p+ilZ5QvO4/gXB6IEUQ+WjsH80JWXfWYUqGRS:h77hlZ5JJxP3JeWvR

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
20a745e5d1ef049ac0347bf12912bdde

Files

20a745e5d1ef049ac0347bf12912bdde
.exe windows:4 windows x86 arch:x86

f431cd2c93961e5ab7351939292916ff

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

advapi32

RegDeleteKeyA
RegEnumKeyExA
RegOpenKeyW
RegEnumValueW
RegQueryValueA
RegCreateKeyExW
RegOpenKeyExA
RegQueryValueExW
RegCreateKeyW
RegDeleteKeyW
RegEnumKeyA
RegQueryValueW
RegEnumValueA
RegEnumKeyW
RegOpenKeyA
RegOpenKeyExW

user32

CopyImage
LoadCursorA
GetFocus
DialogBoxParamW
CreateIcon
DrawIconEx
CopyIcon
DialogBoxParamA
InsertMenuA
GetCursor
GetWindowTextLengthA
CloseWindow
EndDialog
CopyRect
GetWindowTextA
GetMenu
GetDlgItem
DrawTextW

gdi32

GetCurrentPositionEx
RestoreDC
DeleteObject
CreateFontIndirectA
CreateSolidBrush
CreateHalftonePalette
GetClipBox
ExcludeClipRect
GetPixel
CreatePalette
CreateBitmap
GetBrushOrgEx
CreateCompatibleBitmap
CreateCompatibleDC
ExtTextOutA
CreatePenIndirect
GetDCOrgEx
CreateDIBitmap
CreateDIBSection

Sections

.text
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 55KB - Virtual size: 55KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bbs
Size: - Virtual size: 83KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tls
Size: - Virtual size: 265B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 547B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f431cd2c93961e5ab7351939292916ff

Headers

File Characteristics

Imports

advapi32

user32

gdi32

Sections

.text Size: 10KB - Virtual size: 9KB

.data Size: 55KB - Virtual size: 55KB

.bbs Size: - Virtual size: 83KB

.idata Size: 2KB - Virtual size: 1KB

.tls Size: - Virtual size: 265B

.rdata Size: 512B - Virtual size: 24B

.rsrc Size: 1024B - Virtual size: 547B

.text
Size: 10KB - Virtual size: 9KB

.data
Size: 55KB - Virtual size: 55KB

.bbs
Size: - Virtual size: 83KB

.idata
Size: 2KB - Virtual size: 1KB

.tls
Size: - Virtual size: 265B

.rdata
Size: 512B - Virtual size: 24B

.rsrc
Size: 1024B - Virtual size: 547B