0ad18396d13bb6fd0d4b36c2998b5e2d

General

Target

0ad18396d13bb6fd0d4b36c2998b5e2d
Size

60KB
MD5

0ad18396d13bb6fd0d4b36c2998b5e2d
SHA1

c5aaa26178c1567c801519aa89fa28dffc0a4710
SHA256

2791f109f38b78027d4da9c003e109a0b8d50f826c839b9810af826f5af30513
SHA512

cf0e752fac341a294ba0b0e677c6e788229a9fc86a6c185a7cb55eaaebf4725dd18d69b2edd6c50f7b9bd13ffa4702616ecbd89d3cc4a45a896f1e607ee52cc5
SSDEEP

768:CQMwdh60kcm8txtO9qFLIUJH/cIJ93/knEOqtHW6Z69F2O220z:CQVkc1rVzfoEOqZZ6iO220z

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0ad18396d13bb6fd0d4b36c2998b5e2d

Files

0ad18396d13bb6fd0d4b36c2998b5e2d
.exe windows:4 windows x86 arch:x86

289008a2da02c5d7ea99cc287e6d7b5e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryW
SetCurrentDirectoryW
GetTickCount
GetProcAddress
MultiByteToWideChar
GlobalAlloc
GetCurrentProcess
GetFileAttributesExW
GetVersion
SetWaitableTimer
SetFilePointer
GetCurrentThread
GetLogicalDrives
GetLastError
CloseHandle
DuplicateHandle
GlobalFree
LoadLibraryA
ResetEvent
MulDiv
lstrlenW
SetEvent
TerminateThread
GlobalDeleteAtom
GetCurrentThreadId
FindResourceExW
FindFirstFileW

user32

GetWindowTextW
DispatchMessageW
LoadIconW
SetCursor
TranslateMessage
CreatePopupMenu
DrawTextW
GetMessageW
LoadCursorW
SetDlgItemTextW
GetClassNameW
WindowFromPoint
DialogBoxParamW
DestroyIcon
InvalidateRect
wsprintfW
IsWindow

gdi32

DeleteObject
GetMapMode
SelectObject
GetClipBox
CreateICW
StretchBlt
CreateFontIndirectW
CreatePen
CreateCompatibleDC
CreateCompatibleBitmap
GetDeviceCaps
GetObjectW

advapi32

RegSetValueExW
LookupAccountSidW
RegNotifyChangeKeyValue
SetSecurityDescriptorDacl

Sections

.text
Size: 48KB - Virtual size: 44KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

289008a2da02c5d7ea99cc287e6d7b5e

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

Sections

.text Size: 48KB - Virtual size: 44KB

.rdata Size: 4KB - Virtual size: 1KB

.data Size: 4KB - Virtual size: 1KB

.text
Size: 48KB - Virtual size: 44KB

.rdata
Size: 4KB - Virtual size: 1KB

.data
Size: 4KB - Virtual size: 1KB