0ba873865ac2cddc853f1b2889893488

General

Target

0ba873865ac2cddc853f1b2889893488
Size

226KB
MD5

0ba873865ac2cddc853f1b2889893488
SHA1

8c769ad7bd0d460a020a724d0f21f598c2185deb
SHA256

a832861a70be77c1b85520cc043518c4f2acc518e4e1642f3282d9fa5d6718b0
SHA512

275811789c8a86c7aa00f9d3a58d9e9217339943c45dabef6f005c61cdd9841299d65c76053f034f4d4f8699a3d4ff820ecc7fdf7001fcbea73585e0f95aa985
SSDEEP

6144:njP+wUAf/w7HuTsfnmhK6jcG6xJ66QBagsSG76PcZ1:jP+wC75fnEK64x9UcvH

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0ba873865ac2cddc853f1b2889893488

Files

0ba873865ac2cddc853f1b2889893488
.exe windows:4 windows x86 arch:x86

3cd06cfa997a60c5df337a484027f1e5

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

AllocConsole
EnumCalendarInfoExW
ExitProcess
FormatMessageW
GetAtomNameW
GetCurrencyFormatA
GetDevicePowerState
GetLocalTime
GetNamedPipeHandleStateA
GetPrivateProfileStructW
GetProcessShutdownParameters
GlobalUnfix
ReadConsoleW
ReadFileEx
RequestDeviceWakeup
SearchPathA
SetCommState
SetSystemPowerState
Sleep
SleepEx
VerLanguageNameA
VerLanguageNameW
lstrcat

user32

ChangeMenuA
CharToOemBuffW
CreatePopupMenu
GetAltTabInfo
GetKeyNameTextA
GetMenuContextHelpId
GetMonitorInfoA
GetNextDlgGroupItem
IsDialogMessage
NotifyWinEvent
OpenIcon
PostQuitMessage
RegisterClassExW
RegisterHotKey
SendMessageA
SetCursorPos
SetDlgItemInt
SetMenuItemInfoA
SetMessageQueue
SetShellWindow
SetWindowTextW
WinHelpA

gdi32

CreateFontA
DeleteMetaFile
EnableEUDC
EnumFontsA
EnumMetaFile
GetColorSpace
GetEnhMetaFileW
GetFontData
GetRgnBox
GetStretchBltMode
GetSystemPaletteEntries
LineTo
MoveToEx
PtVisible
RealizePalette
SetBkColor
SetColorAdjustment
SetGraphicsMode
SetMagicColors
SetTextJustification
SetViewportOrgEx

Sections

.text
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 223KB - Virtual size: 236KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 216KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3cd06cfa997a60c5df337a484027f1e5

Headers

File Characteristics

Imports

kernel32

user32

gdi32

Sections

.text Size: 512B - Virtual size: 4KB

.data Size: 223KB - Virtual size: 236KB

.rdata Size: - Virtual size: 8KB

.rsrc Size: 1024B - Virtual size: 216KB

.text
Size: 512B - Virtual size: 4KB

.data
Size: 223KB - Virtual size: 236KB

.rdata
Size: - Virtual size: 8KB

.rsrc
Size: 1024B - Virtual size: 216KB