093a990fae577a08a18ba5eb641926e0

General

Target

093a990fae577a08a18ba5eb641926e0
Size

56KB
MD5

093a990fae577a08a18ba5eb641926e0
SHA1

367a6d5eeb420a5d06840e1b122ed9a145cfb897
SHA256

8cb6333eaacf48b0b8f48903beb5385b861c8fd4998df878bb1c087fece93654
SHA512

80db8708795944d89d7f755ab469f3882c7454a38297808f205131c622c0ed4f0fafb60f24a840e9cb2c2c36d70b2fa1e1d64f50db6a5d4ae1af4609666974f0
SSDEEP

1536:U1QZ5ANsQKtrLlHhEIW+W4rBNM627jun7:UQZXQkLZOI1rD27ju7

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
093a990fae577a08a18ba5eb641926e0

Files

093a990fae577a08a18ba5eb641926e0
.exe windows:4 windows x86 arch:x86

af49da9113fe3342d4d7aa877a9c57e0

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

WaitForSingleObject
ReadFile
MoveFileW
FreeResource
GetCurrentThread
SetEvent
FindResourceW
SuspendThread
FreeLibrary
SetEndOfFile
SetCurrentDirectoryW
GetTickCount
VirtualAlloc
CreateFileW
CreateEventW
ResumeThread
ReadProcessMemory
GetProcAddress
GetCurrentProcessId
FileTimeToSystemTime
GetLogicalDrives
GetFileAttributesExW
LoadLibraryA
SetWaitableTimer
MultiByteToWideChar
GetLocalTime
lstrlenW
GetPrivateProfileStringW
CloseHandle
lstrcpyW

user32

CreatePopupMenu
AppendMenuW
LoadStringW
SetCapture
UpdateWindow
SendDlgItemMessageW
GetWindowTextW
ReleaseDC
ReleaseCapture
VkKeyScanW
WindowFromPoint
SetForegroundWindow
DrawTextW
OffsetRect
GetCursorPos
SystemParametersInfoW
SetCursorPos
RegisterClassExW
CreateWindowExW
GetParent

gdi32

CreateFontIndirectW
CreateCompatibleBitmap
DeleteDC
CreateDCW
GetMapMode
GetStockObject
SetDIBits
DPtoLP
CreateRoundRectRgn
SetBkMode
CreateBitmap
LineTo
DeleteObject

advapi32

RegCloseKey
RegNotifyChangeKeyValue
RegQueryValueExW

Sections

.text
Size: 44KB - Virtual size: 41KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 1020B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

af49da9113fe3342d4d7aa877a9c57e0

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

Sections

.text Size: 44KB - Virtual size: 41KB

.rdata Size: 4KB - Virtual size: 1KB

.data Size: 4KB - Virtual size: 1020B

.text
Size: 44KB - Virtual size: 41KB

.rdata
Size: 4KB - Virtual size: 1KB

.data
Size: 4KB - Virtual size: 1020B