0a713be6dd78ce894389141b057f28ee

General

Target

0a713be6dd78ce894389141b057f28ee
Size

191KB
MD5

0a713be6dd78ce894389141b057f28ee
SHA1

afff44ecb5c49af392d5ce01156bf3b6b90507ab
SHA256

639e6af76a18d97834ef257f61f3b41c6def3d4ed4cdfb2e48dc32e6fe7f9622
SHA512

a997a802d663081b30b52d678c758c118d1c08c3f0de82ccecff6a8b2d678bc05fa80267ac3c0cdfa636d8c7f09ed32867e66f7214fcacd0d7591cf0a2b542d7
SSDEEP

3072:0s0eKexxG4efvuDDnlYQP+CzTNpWxkUBZyg4zL4K7rP5B7PIcID7:WeK6UBv9Q2CTP4fnyhzL4uX4

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0a713be6dd78ce894389141b057f28ee

Files

0a713be6dd78ce894389141b057f28ee
.exe windows:4 windows x86 arch:x86

1f7b1ac5f196ed71c583449c0b024e56

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCurrentThread
GlobalAddAtomW
lstrcatW
SetConsoleCtrlHandler
LoadResource
DefineDosDeviceW
CopyFileExA
GetBinaryTypeA
GetConsoleFontSize

user32

SendInput
DialogBoxIndirectParamW
SetDoubleClickTime
WinHelpW
SetClassWord
EnumDisplayMonitors
EnumPropsExW
GrayStringA
SendNotifyMessageW
IsRectEmpty
SendNotifyMessageA
DdeQueryNextServer
GetOpenClipboardWindow
ChangeClipboardChain
IsMenu
SetMessageQueue
CharNextExA
EndDialog

shell32

DllUnregisterServer
SHGetMalloc
StrStrIA
DllUnregisterServer
FreeIconList
InternalExtractIconListW
SHBindToParent

gdi32

SetDIBColorTable
GdiEntry2
SetEnhMetaFileBits
UpdateICMRegKeyA
UpdateICMRegKeyW
GdiDllInitialize
UnrealizeObject
EngCheckAbort
GetFontAssocStatus
EnumEnhMetaFile
GetTextExtentPointA
GdiConvertRegion
GdiEntry2
Polygon
DeleteEnhMetaFile
XFORMOBJ_bApplyXform

Sections

CODE
Size: 9KB - Virtual size: 808KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 177KB - Virtual size: 183KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.pack32
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1f7b1ac5f196ed71c583449c0b024e56

Headers

File Characteristics

Imports

kernel32

user32

shell32

gdi32

Sections

CODE Size: 9KB - Virtual size: 808KB

.data Size: 177KB - Virtual size: 183KB

.rsrc Size: 1024B - Virtual size: 4KB

.idata Size: 2KB - Virtual size: 2KB

.pack32 Size: - Virtual size: 4KB

CODE
Size: 9KB - Virtual size: 808KB

.data
Size: 177KB - Virtual size: 183KB

.rsrc
Size: 1024B - Virtual size: 4KB

.idata
Size: 2KB - Virtual size: 2KB

.pack32
Size: - Virtual size: 4KB