0f6d53109bc402028ea55890b3f2b1d2

General

Target

0f6d53109bc402028ea55890b3f2b1d2
Size

213KB
MD5

0f6d53109bc402028ea55890b3f2b1d2
SHA1

7e15807435b0364a0b642c800ef6710dab2deeba
SHA256

7f94c5448066bba754d9ed2ff4843ed3ad2bed336abc036adfe352a229d35c7f
SHA512

e9d9b49cc444603b1a6a9ed2889f904afe6151704a93a7b3c4af948854cf3a03bb6115557f66aaa95266d25083d189807f524f48a9f4bc64331ad3d601d04075
SSDEEP

3072:TnQUz82Gzvx+LgpadAMGXBcMyqUscRdD3vjYODN7yIN0RbAaeIT15iD46djJRVgf:TQdxSgpSoBcNqxc33vUODU7JriEOjV

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0f6d53109bc402028ea55890b3f2b1d2

Files

0f6d53109bc402028ea55890b3f2b1d2
.exe windows:5 windows x86 arch:x86

f37a536805e8ee90d4b50dde576f148d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

ntdll

memcpy

user32

DefWindowProcA
CreateDialogParamW
TranslateAcceleratorW
InflateRect
IsMenu
GetDlgCtrlID
AdjustWindowRectEx
CallWindowProcA
SetDlgItemTextA
LoadImageA
WaitForInputIdle
GetDlgItemInt
CloseDesktop
ShowWindowAsync
GetWindowDC
DrawStateW
SetSysColors
SetWindowTextA
GetDlgItem
UnionRect
wvsprintfA
PostMessageA
FrameRect
GetWindowTextLengthW
GetSystemMetrics
InvertRect
SetMenu
TrackPopupMenuEx
DrawFocusRect
ArrangeIconicWindows
GetAltTabInfoA
RegisterWindowMessageA
LookupIconIdFromDirectory
CreateDialogParamA
SetWindowRgn
CheckDlgButton

gdi32

EnumFontsW
ScaleViewportExtEx
GetTextMetricsW
CreateSolidBrush
GetDIBits
Escape
SetWindowExtEx
GetBitmapBits
SetPaletteEntries
GetNearestColor
SetViewportExtEx
CreateRoundRectRgn
GetTextCharsetInfo
SetDIBColorTable
CreateDIBitmap
DeleteObject
CreateRectRgn

kernel32

ClearCommBreak
GetLongPathNameW
SetHandleInformation
CallNamedPipeW
LocalLock
GetStartupInfoW
GetFileAttributesA
LoadLibraryA
EnumResourceTypesA
SetHandleCount
CompareStringW
GetExitCodeThread
MoveFileExW
GetUserDefaultLCID
lstrlenW
HeapValidate
lstrcpyA
WaitCommEvent
GetWindowsDirectoryW

Exports

Exports

AlphaBlend
GradientFill
TransparentBlt
?KDFJHjhfuyUFuiuydyufds@@YGKEPA_WG@Z

Sections

.text
Size: 30KB - Virtual size: 30KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

data
Size: 17KB - Virtual size: 127KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 162KB - Virtual size: 162KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f37a536805e8ee90d4b50dde576f148d

Headers

File Characteristics

Imports

ntdll

user32

gdi32

kernel32

Exports

Exports

Sections

.text Size: 30KB - Virtual size: 30KB

data Size: 17KB - Virtual size: 127KB

.rsrc Size: 162KB - Virtual size: 162KB

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 30KB - Virtual size: 30KB

data
Size: 17KB - Virtual size: 127KB

.rsrc
Size: 162KB - Virtual size: 162KB

.reloc
Size: 2KB - Virtual size: 1KB