1214804123bf90219a822075e1fcd153

General

Target

1214804123bf90219a822075e1fcd153
Size

9KB
MD5

1214804123bf90219a822075e1fcd153
SHA1

face4ca651295dd4fbae23028e82b75a065f3a22
SHA256

086a919a62708c5f42ad6a7994801e9b8aafc4ef68964d5897743f33c06fd94c
SHA512

c24013fd770efaac75dc6f22032b7679dd8792f0535962fcfceacd2f603d4876fcff6f610ff2b32f6214c9963f5ce99a786476ee252178f1f712a937a4db1307
SSDEEP

96:5We5kSaCZe4FvnU3wrFeHAUWdByPkL3AXjxq0YrD0rD+ys7wcQhr/37/ugE:5WeSdavfNDRm7fpcArj/u

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1214804123bf90219a822075e1fcd153

Files

1214804123bf90219a822075e1fcd153
.exe windows:4 windows x86 arch:x86

05ed4f161ff02fe5bb1c563841d51db5

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

TranslateMessage
SetTimer
SendMessageA
RegisterClassExA
PostQuitMessage
OpenClipboard
KillTimer
GetWindowTextA
GetMessageA
GetForegroundWindow
GetClipboardData
GetClassNameA
FindWindowExA
FindWindowA
DispatchMessageA
DefWindowProcA
CreateWindowExA
CloseClipboard
wsprintfA

shell32

ShellExecuteA

kernel32

GetStartupInfoA
GetVolumeInformationA
lstrlenA
lstrcpynA
lstrcpyA
lstrcmpA
lstrcatA
WriteFile
WinExec
TerminateProcess
SystemTimeToFileTime
Sleep
SetFilePointer
ReadFile
LoadLibraryA
GlobalUnlock
GlobalLock
GlobalFree
GlobalAlloc
GetWindowsDirectoryA
GetTickCount
CloseHandle
CompareStringA
CreateDirectoryExA
CreateFileA
CreateProcessA
CreateThread
DeleteFileA
ExitProcess
FreeLibrary
GetCommandLineA
GetModuleFileNameA
GetModuleHandleA
GetProcAddress
GetSystemTime
GetSystemDirectoryA

wsock32

inet_ntoa
WSAStartup
gethostbyname

wininet

InternetGetConnectedState
DeleteUrlCacheEntryA
FindFirstUrlCacheEntryA
FindNextUrlCacheEntryA

urlmon

URLDownloadToFileA

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

05ed4f161ff02fe5bb1c563841d51db5

Headers

File Characteristics

Imports

user32

shell32

kernel32

wsock32

wininet

urlmon

Sections

.text Size: 4KB - Virtual size: 4KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 1KB - Virtual size: 9KB

.text
Size: 4KB - Virtual size: 4KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 1KB - Virtual size: 9KB