111c6f7cdf23a83b29f204af10704dbb

General

Target

111c6f7cdf23a83b29f204af10704dbb
Size

41KB
MD5

111c6f7cdf23a83b29f204af10704dbb
SHA1

9910614d661f2049717371f6be2dd8d15f6acb8d
SHA256

08e76a9191016a14e03264a26d57c80be7f001357fcd1909b7ce2a36b5206ae5
SHA512

d538459c831b9d09c00310688c970109c05e3ef35bc0fbf27d9a3e39981daf9a149e2e2ef020d0b9c67b1c795340a6499818fda9a5c907c498fcb03981fdfee5
SSDEEP

768:lSC904uoa+xFH8lPLGVmSLFocjEs73TY6C1xrxZeydbOwmVtRf3k8WFb:lSC90ZGnclzGvFoLyDj6bOZVyF

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
111c6f7cdf23a83b29f204af10704dbb

Files

111c6f7cdf23a83b29f204af10704dbb
.exe windows:4 windows x86 arch:x86

c45fa7d2b09fac31104ba335ba5111ea

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CancelWaitableTimer
CreateFileMappingA
CreateNamedPipeA
CreateProcessA
EnumCalendarInfoW
EnumDateFormatsW
EnumSystemLocalesA
EraseTape
ExitProcess
GetCPInfoExW
GetCommConfig
GetDateFormatA
GetFileType
GetMailslotInfo
GetPrivateProfileStringW
GetPrivateProfileStructW
GetSystemTime
HeapCompact
MultiByteToWideChar
ReadFileScatter
SwitchToFiber
WaitForDebugEvent
lstrcpyA

user32

BroadcastSystemMessage
CreateDialogIndirectParamA
DdeGetLastError
DdeSetQualityOfService
EnableWindow
GetListBoxInfo
GetMenuItemInfoW
GetMessageW
GetNextDlgGroupItem
GetPriorityClipboardFormat
GetSubMenu
GetSystemMetrics
GetTopWindow
LoadAcceleratorsW
LockWindowUpdate
MapVirtualKeyW
RegisterHotKey
SetSysColorsTemp
SetWindowLongW
SetWindowRgn
UserClientDllInitialize
VkKeyScanA

gdi32

Arc
ChoosePixelFormat
CreateColorSpaceA
CreateCompatibleDC
CreateDIBPatternBrush
CreateEnhMetaFileW
DPtoLP
Ellipse
ExtTextOutW
GetGlyphOutline
GetLogColorSpaceA
GetNearestColor
GetPixelFormat
GetStockObject
GetSystemPaletteUse
GetTextMetricsW
InvertRgn
PatBlt
PolylineTo
PtInRegion
ResetDCW
SetArcDirection
SetStretchBltMode
StrokePath
UpdateICMRegKeyW

Sections

.text
Size: 512B - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 39KB - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c45fa7d2b09fac31104ba335ba5111ea

Headers

File Characteristics

Imports

kernel32

user32

gdi32

Sections

.text Size: 512B - Virtual size: 12KB

.data Size: 39KB - Virtual size: 52KB

.idata Size: - Virtual size: 8KB

.rsrc Size: - Virtual size: 8KB

.text
Size: 512B - Virtual size: 12KB

.data
Size: 39KB - Virtual size: 52KB

.idata
Size: - Virtual size: 8KB

.rsrc
Size: - Virtual size: 8KB