0e252408364f895cd5e8be63fe1b8dff

Sharing

Copy URL

Twitter E-mail

General

Target

0e252408364f895cd5e8be63fe1b8dff
Size

80KB
MD5

0e252408364f895cd5e8be63fe1b8dff
SHA1

6c19778c86d8cf51fd63bf51b3f3ae34aebe83ca
SHA256

ae9b579e96250d2bcef7ca4aae6e07c1927076be2dba2ce723e67673fc5e1563
SHA512

61154904814dd0c3fe61a6ae50e25f3dc33a5b68f167006321964eb46f7e363406ce148bb4be3d4af3f3c57f5b3341a13b9a8e5035883ea1d84983136b6bc36b
SSDEEP

1536:YdgfSsp8aNjZiHVOjxtuKgW27zh0a0jjqz3:YdTsFVsVCtuseKG3

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0e252408364f895cd5e8be63fe1b8dff

Files

0e252408364f895cd5e8be63fe1b8dff
.exe windows:4 windows x86 arch:x86

95e0aec36addf52b8579e1ece2364391

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetStringTypeA
SetLastError
HeapAlloc
lstrcpynA
GlobalFree
CloseHandle
GetLocalTime
lstrcpyA
GetCommandLineA
Sleep
GetFileSize
FreeLibrary
lstrlenA
lstrcmpA
lstrcatA
GetLastError
WideCharToMultiByte
lstrcmpiA
GetStringTypeW
GetStdHandle

advapi32

RegOpenKeyExA
RegQueryValueExW
RegReplaceKeyA
RegGetKeySecurity
RegQueryValueW
RegOpenKeyA
RegDeleteKeyA
RegEnumKeyW
RegEnumKeyExW
RegQueryInfoKeyW
RegLoadKeyW
RegCreateKeyExW
RegFlushKey
RegEnumValueA
RegDeleteValueA
RegQueryValueExA
RegDeleteValueW
RegCreateKeyW
RegCreateKeyExA
RegReplaceKeyW

comctl32

ImageList_Copy
ImageList_DrawEx
ImageList_DragShowNolock
ImageList_Remove
ImageList_GetImageCount
ImageList_GetDragImage
ImageList_AddIcon
ImageList_Destroy
ImageList_Read
InitCommonControls
ImageList_EndDrag
ImageList_GetIconSize
ImageList_Replace
ImageList_LoadImage
ImageList_GetImageRect
ImageList_GetImageInfo
ImageList_DragEnter
ImageList_Merge

user32

GetMenu
DrawTextA
CopyRect
CopyIcon
DialogBoxParamW
EndDialog
CalcMenuBar
GetWindowTextLengthA
CopyImage
CreateIcon
DrawIcon
AlignRects
DrawIconEx
GetWindowTextA
GetFocus
GetCursor
CloseWindow
DialogBoxParamA
LoadCursorA
DrawTextW
DrawIcon
CopyImage
DrawTextA
AlignRects
GetWindowTextA
IsMenu
GetWindowTextLengthA
CopyRect
CopyIcon
DrawIconEx
CalcMenuBar
InsertMenuA
GetDC
DialogBoxParamA
GetMenu
GetDlgItem
BlockInput
DialogBoxParamW
AppendMenuW

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 64KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 4KB - Virtual size: 70KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsr�
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

95e0aec36addf52b8579e1ece2364391

Headers

File Characteristics

Imports

kernel32

advapi32

comctl32

user32

Sections

.text Size: 4KB - Virtual size: 3KB

.data Size: 64KB - Virtual size: 60KB

.rdata Size: 4KB - Virtual size: 70KB

.reloc Size: - Virtual size: 2KB

.rsr� Size: 4KB - Virtual size: 2KB

.text
Size: 4KB - Virtual size: 3KB

.data
Size: 64KB - Virtual size: 60KB

.rdata
Size: 4KB - Virtual size: 70KB

.reloc
Size: - Virtual size: 2KB

.rsr�
Size: 4KB - Virtual size: 2KB