0a0655c166dbbf438b542cd30eb11153

General

Target

0a0655c166dbbf438b542cd30eb11153
Size

68KB
MD5

0a0655c166dbbf438b542cd30eb11153
SHA1

beccdc5775996ddb6c3ed67e81e639b70706ef74
SHA256

d59251f93db5a1edd875f93c56841f35a7826564890eea4cc5554c1b93c56d4b
SHA512

b1a75f5f90b9d20991fb16ee32c090b9faddb6ce45d297022f706f39e8f14b60ff8f4e955f219b9d4b2e2dbd103f85e0ee50835aa98ff36d77b0c6840f43251e
SSDEEP

1536:xI868LclP+GK39oid2sFjNl6Yi9DwThOsnVfF:GD8LcZQ39oid2sxNlPiEhOmV

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0a0655c166dbbf438b542cd30eb11153

Files

0a0655c166dbbf438b542cd30eb11153
.exe windows:4 windows x86 arch:x86

61cbd00035d7dae475a9b59fda1ea08e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

Beep
CancelDeviceWakeupRequest
CompareStringA
CreatePipe
DeleteAtom
EscapeCommFunction
ExitProcess
FindNextChangeNotification
FreeLibrary
GenerateConsoleCtrlEvent
GetEnvironmentVariableW
GetStringTypeExA
GetSystemPowerStatus
HeapLock
LCMapStringA
OpenEventW
ReadConsoleA
ScrollConsoleScreenBufferA
SetConsoleCursorInfo
SetProcessPriorityBoost
Sleep
WriteConsoleW
WriteFileGather
lstrcatA

user32

CreateMenu
DdeEnableCallback
DdeQueryStringW
DefFrameProcW
DrawFrameControl
DrawStateA
DrawStateW
EditWndProc
EnumDesktopWindows
EnumPropsExW
ExcludeUpdateRgn
FlashWindowEx
GetCursorInfo
GetIconInfo
GetTitleBarInfo
GetWindowTextLengthW
KillTimer
MsgWaitForMultipleObjects
OpenWindowStationA
RemoveMenu
SendDlgItemMessageW
SendNotifyMessageW
SetForegroundWindow
SetPropA
SetWindowRgn
UnregisterDeviceNotification
wvsprintfW

gdi32

AddFontResourceW
Chord
CreateFontIndirectA
CreateMetaFileA
CreatePalette
DeleteColorSpace
DeleteDC
EnumFontFamiliesExA
EnumICMProfilesA
FixBrushOrgEx
GdiPlayDCScript
GetBrushOrgEx
GetFontData
GetGlyphOutline
GetKerningPairsA
GetMiterLimit
GetStretchBltMode
GetTextAlign
GetTextCharsetInfo
GetTextExtentExPointA
GetTextMetricsA
OffsetClipRgn
RemoveFontResourceW
SetBrushOrgEx
SetICMMode
SetTextAlign
StretchDIBits
gdiPlaySpoolStream

Sections

.text
Size: 4KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 60KB - Virtual size: 80KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

61cbd00035d7dae475a9b59fda1ea08e

Headers

File Characteristics

Imports

kernel32

user32

gdi32

Sections

.text Size: 4KB - Virtual size: 20KB

.data Size: 60KB - Virtual size: 80KB

.rdata Size: - Virtual size: 4KB

.rsrc Size: - Virtual size: 16KB

.text
Size: 4KB - Virtual size: 20KB

.data
Size: 60KB - Virtual size: 80KB

.rdata
Size: - Virtual size: 4KB

.rsrc
Size: - Virtual size: 16KB