094dec9e0904c9f8f5c117a0b86d8996

General

Target

094dec9e0904c9f8f5c117a0b86d8996
Size

280KB
MD5

094dec9e0904c9f8f5c117a0b86d8996
SHA1

be44e996b3670b101c16954b84d5cb722bf886c8
SHA256

d8fe1234f0991017b1e0f3aebee939d3a31454f04f5b18eec88ed66020d4c1da
SHA512

be8cc61c3dd2b29dc47f17af267051b852e4c84373b145b6b92f39ed58b1cc01c23e0dbdbfbfe16cef4c336591c8bf0bca6b0bb8c7369edd6a73a711b4ba1264
SSDEEP

6144:2onZ8LF/uQcwXE84DCfyxMHbkIayIxUJdYGSxmWrB9nAnkZZH:2qZ8LFX/UDXQbJayI2JdFSxHdykT

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
094dec9e0904c9f8f5c117a0b86d8996

Files

094dec9e0904c9f8f5c117a0b86d8996
.exe windows:4 windows x86 arch:x86

7947e0a32a901713ba375063130a083f

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

CreateDirectoryW
CreateEventA
CreateFileW
EnumSystemCodePagesA
EnumTimeFormatsW
ExitProcess
FreeLibrary
GetBinaryTypeA
GetConsoleTitleA
GetNumberFormatA
IsValidLocale
LocalFileTimeToFileTime
OutputDebugStringA
PeekConsoleInputA
PrepareTape
QueryDosDeviceW
ReadFileScatter
SetLocalTime
SetVolumeLabelW
Thread32Next

user32

AdjustWindowRect
ChangeDisplaySettingsW
CharUpperBuffA
CreatePopupMenu
DdeReconnect
DestroyCursor
DlgDirListA
DrawMenuBarTemp
GetDC
GetSystemMenu
GetWindowRgn
HideCaret
InSendMessageEx
MapVirtualKeyExA
SendInput
SetProcessWindowStation
SetUserObjectInformationW
SetWindowsHookExA
SwitchDesktop
WinHelpA
WindowFromPoint
wvsprintfW

gdi32

AddFontResourceW
ChoosePixelFormat
CreateDIBSection
CreateHatchBrush
CreateScalableFontResourceW
DeleteColorSpace
ExtEscape
GdiComment
GetColorAdjustment
GetDeviceCaps
GetEnhMetaFileDescriptionA
GetPolyFillMode
GetSystemPaletteUse
GetTextFaceW
ModifyWorldTransform
SetGraphicsMode
SetICMProfileA
SetPixelV
SetViewportExtEx
SetWindowExtEx
UpdateColors

Sections

.text
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 268KB - Virtual size: 272KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.xdata
Size: 4KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 512KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7947e0a32a901713ba375063130a083f

Headers

File Characteristics

Imports

kernel32

user32

gdi32

Sections

.text Size: 512B - Virtual size: 4KB

.data Size: 268KB - Virtual size: 272KB

.xdata Size: 4KB - Virtual size: 16KB

.rsrc Size: 2KB - Virtual size: 512KB

.text
Size: 512B - Virtual size: 4KB

.data
Size: 268KB - Virtual size: 272KB

.xdata
Size: 4KB - Virtual size: 16KB

.rsrc
Size: 2KB - Virtual size: 512KB