101a8cbb14f52fa56d3e0ae1f5ca8e38

Sharing

Copy URL Twitter E-mail

General

Target

101a8cbb14f52fa56d3e0ae1f5ca8e38
Size

150KB
MD5

101a8cbb14f52fa56d3e0ae1f5ca8e38
SHA1

a0ba1069a1f359d46ab235c9cf6e0435f3d5c022
SHA256

9a68008dd481d057fde06d3846f29944c8344d9831d93f67804f0d64080dda6f
SHA512

18620cbaed2329f7ce71d58a8d5f22a6074c34383df8f286837e32f01e28e11bd5f3bb323de128c31705cfa2237fe94e78bdc2556b220189310f2a0aa0968045
SSDEEP

3072:pNTlxynDjoxlk/nRF/rnMsbqnIV4NtwxCrZ+kZuWOvVQCXqJJ6/:XTlxyDGkrMsmnIV4ExCr14t6M/

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
101a8cbb14f52fa56d3e0ae1f5ca8e38

Files

101a8cbb14f52fa56d3e0ae1f5ca8e38
.exe windows:5 windows x86 arch:x86

2b0a93ccbea3a2fff4634153f1ab9bb6

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetFocus
CharUpperW
GetWindow

kernel32

GetProcessHeap

Exports

Exports

ActionPlaY
?TemplateMessage@@YG_JUAPI_VERSION@@U_LOCALSUBTHREADIDCOMMON@@@Y

Sections

.text
Size: 39KB - Virtual size: 38KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.itext
Size: 512B - Virtual size: 226B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 22KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.0xDB95
Size: 512B - Virtual size: 28B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.0x23F1
Size: 512B - Virtual size: 76B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.0x45EA
Size: 512B - Virtual size: 64B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.0x3420
Size: 38KB - Virtual size: 37KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.0x763A
Size: 512B - Virtual size: 64B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.0xD331
Size: 512B - Virtual size: 76B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.0xD380
Size: 38KB - Virtual size: 38KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.0xD386
Size: 512B - Virtual size: 64B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.0xD384
Size: 512B - Virtual size: 64B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.0x5271
Size: 1024B - Virtual size: 664B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2b0a93ccbea3a2fff4634153f1ab9bb6

Headers

File Characteristics

Imports

user32

kernel32

Exports

Exports

Sections

.text Size: 39KB - Virtual size: 38KB

.itext Size: 512B - Virtual size: 226B

.data Size: 22KB - Virtual size: 22KB

.0xDB95 Size: 512B - Virtual size: 28B

.0x23F1 Size: 512B - Virtual size: 76B

.0x45EA Size: 512B - Virtual size: 64B

.0x3420 Size: 38KB - Virtual size: 37KB

.0x763A Size: 512B - Virtual size: 64B

.0xD331 Size: 512B - Virtual size: 76B

.0xD380 Size: 38KB - Virtual size: 38KB

.0xD386 Size: 512B - Virtual size: 64B

.0xD384 Size: 512B - Virtual size: 64B

.0x5271 Size: 1024B - Virtual size: 664B

.data Size: 2KB - Virtual size: 1KB

.reloc Size: 2KB - Virtual size: 1KB

.rsrc Size: 1KB - Virtual size: 60KB

.text
Size: 39KB - Virtual size: 38KB

.itext
Size: 512B - Virtual size: 226B

.data
Size: 22KB - Virtual size: 22KB

.0xDB95
Size: 512B - Virtual size: 28B

.0x23F1
Size: 512B - Virtual size: 76B

.0x45EA
Size: 512B - Virtual size: 64B

.0x3420
Size: 38KB - Virtual size: 37KB

.0x763A
Size: 512B - Virtual size: 64B

.0xD331
Size: 512B - Virtual size: 76B

.0xD380
Size: 38KB - Virtual size: 38KB

.0xD386
Size: 512B - Virtual size: 64B

.0xD384
Size: 512B - Virtual size: 64B

.0x5271
Size: 1024B - Virtual size: 664B

.data
Size: 2KB - Virtual size: 1KB

.reloc
Size: 2KB - Virtual size: 1KB

.rsrc
Size: 1KB - Virtual size: 60KB