0ae3c3d40e9e2f9a607eb122945fd806

General

Target

0ae3c3d40e9e2f9a607eb122945fd806
Size

177KB
MD5

0ae3c3d40e9e2f9a607eb122945fd806
SHA1

44144fd58f1402d7e9fb9f79d8b1db8e47eb9ca0
SHA256

7df7cc25adec4db367b0ac4e3428672d773820a9f4fdfbf0346cd2e31225c59c
SHA512

cf28b7a0ebb6d3abae6ab213bc8ea492d3d799d9d23439f13ba9b9df64f28e24f60be3fc5047fda608780555aea9135708c532214b8aa39bf3783709934e041f
SSDEEP

3072:jAtbd/WSkwyW62FL0/qtCnkvTnlMMF1SJhinKxP6bqbrqjMVdTdws0lft2zn+lz5:0D/2ZrnGnpLnKx1brqjeRxEPlzGG

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0ae3c3d40e9e2f9a607eb122945fd806

Files

0ae3c3d40e9e2f9a607eb122945fd806
.exe windows:4 windows x86 arch:x86

64068e653557cee8bd77f1f0ca02f605

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdiplus

GdipGetImageHeight
GdipCreateBitmapFromFile
GdipGetImageWidth
GdipGetImagePixelFormat
GdipDisposeImage

winmm

timeGetTime

kernel32

GetHandleInformation
LocalFree
TransmitCommChar
LoadLibraryW
EnumResourceNamesW
ExitProcess
ExitProcess
GetVersionExA
LocalAlloc
GetModuleFileNameA

advapi32

RegQueryValueExW
RegCreateKeyW
RegDeleteKeyW
RegSetValueExW
RegOpenKeyExW
RegSetValueW
RegCloseKey
RegEnumKeyExW

user32

DestroyMenu
CreatePopupMenu
FindWindowA
RedrawWindow
ClipCursor
TrackPopupMenuEx
GetDesktopWindow

gdi32

LineTo
CreatePen
DeleteDC
CreateDCW
CreateCompatibleDC
CreateDIBSection
GetObjectType
SelectObject
BitBlt
SetStretchBltMode
StretchBlt
CreateBitmap

msimg32

AlphaBlend
TransparentBlt

comctl32

ImageList_DragLeave
ImageList_DragMove
ImageList_DragEnter

ole32

CoFreeUnusedLibraries
StringFromGUID2
CoUninitialize
CoInitialize
CoCreateInstance

Sections

.text
Size: 133KB - Virtual size: 133KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 40KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsr
Size: 512B - Virtual size: 336KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

64068e653557cee8bd77f1f0ca02f605

Headers

File Characteristics

Imports

gdiplus

winmm

kernel32

advapi32

user32

gdi32

msimg32

comctl32

ole32

Sections

.text Size: 133KB - Virtual size: 133KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 40KB - Virtual size: 39KB

.rsr Size: 512B - Virtual size: 336KB

.text
Size: 133KB - Virtual size: 133KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 40KB - Virtual size: 39KB

.rsr
Size: 512B - Virtual size: 336KB