09093f0ae9495fdbaeba274182001e4f

General

Target

09093f0ae9495fdbaeba274182001e4f
Size

88KB
MD5

09093f0ae9495fdbaeba274182001e4f
SHA1

0ef846879db98b98a70c8a559ae73799cccc69f5
SHA256

d292ab74b18b568098b7217784894f124296fe1172ab067e7aa297695acc4306
SHA512

0382fcc897d772f8f02ad521842c611c7e309e1e698357b65216b14286628cf64e184b5167aa307bd72140544c8982c5759047d434656380e10fe55bba81baad
SSDEEP

1536:MDc4BAxQyRraAWs9nStSY1P7kEM5/TZkuRN/IlC59xGsbt:KcLxfPWwZY1P7ZM4WN/IlCgs

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
09093f0ae9495fdbaeba274182001e4f

Files

09093f0ae9495fdbaeba274182001e4f
.exe windows:4 windows x86 arch:x86

4448c316425d5e7233080316e8e21f0f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegCreateKeyExW
RegQueryValueExA
RegQueryInfoKeyA
RegFlushKey
RegCreateKeyExA
RegEnumKeyExW
RegLoadKeyA
RegCreateKeyW
RegDeleteValueW
RegEnumKeyExA
RegEnumKeyA
RegOpenKeyExA
RegReplaceKeyW
RegGetKeySecurity
RegQueryValueA
RegQueryValueW
RegDeleteKeyA
RegOpenKeyExW
RegDeleteValueA

user32

BlockInput
DrawIconEx
AppendMenuW
DrawTextA
EndDialog
LoadCursorA
GetDlgItem
AppendMenuA
CopyIcon
GetFocus
IsMenu
GetMenu
CalcMenuBar
CopyImage
DrawTextW
CloseWindow

comctl32

ImageList_GetImageInfo
ImageList_LoadImageW
ImageList_DragMove
ImageList_GetImageRect
ImageList_DrawEx
ImageList_Create
ImageList_AddIcon
ImageList_GetIconSize
ImageList_GetImageCount
ImageList_Read
ImageList_Destroy
ImageList_EndDrag
ImageList_GetIcon
ImageList_Merge
ImageList_LoadImage
ImageList_Remove
ImageList_Replace

kernel32

GetFileSize
HeapAlloc
GetStdHandle
GetDateFormatA
lstrcpyA
lstrcmpiA
GetFileAttributesA
SetLastError
HeapFree
GetCPInfo
GetModuleHandleA
GlobalFree
GetCommandLineA
lstrcmpA
GetLocalTime
GetLastError
lstrcatA
GetStringTypeA

Sections

.text
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 68KB - Virtual size: 170KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: - Virtual size: 416B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4448c316425d5e7233080316e8e21f0f

Headers

File Characteristics

Imports

advapi32

user32

comctl32

kernel32

Sections

.text Size: 8KB - Virtual size: 4KB

.rdata Size: 4KB - Virtual size: 1KB

.data Size: 68KB - Virtual size: 170KB

.reloc Size: - Virtual size: 416B

.rsrc Size: 4KB - Virtual size: 1KB

.text
Size: 8KB - Virtual size: 4KB

.rdata
Size: 4KB - Virtual size: 1KB

.data
Size: 68KB - Virtual size: 170KB

.reloc
Size: - Virtual size: 416B

.rsrc
Size: 4KB - Virtual size: 1KB