1215196c23eb28ab1333cc6b26287115

Sharing

Copy URL Twitter E-mail

General

Target

1215196c23eb28ab1333cc6b26287115
Size

119KB
MD5

1215196c23eb28ab1333cc6b26287115
SHA1

4943ab590b629c4d2611eaae320ed6a0be092797
SHA256

9bc6621d6080957fff6d9726991a7a4ddf34c960b6aa9eb0a2c44c2fa23afb00
SHA512

019aaaee1e98df901ee4a50d54c8de24f6d0ed2f6864c610319ac1381e6a6bfde6c7d3f563f415a7c127c9ab3c9fb2cb402ad82eff2d5d257e76a954b6d5ecd7
SSDEEP

3072:x+pD623zqqanTygSR3htmon82cRqRijUj0WA7B:xC2CqqanTBY3h58ZRqRijUj0X

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1215196c23eb28ab1333cc6b26287115

Files

1215196c23eb28ab1333cc6b26287115
.exe windows:4 windows x86 arch:x86

1e40e44b2f768738280411813fdf16a2

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCommandLineA
VirtualAllocEx
GetModuleHandleA
GetACP
GetCPInfo
ExitProcess
GetCurrentThreadId

shell32

Shell_NotifyIconW

gdi32

GetTextColor
CreateCompatibleDC
CreateDIBitmap

user32

SetParent
GetSysColorBrush
PtInRect
GetSubMenu
CreateWindowExA
GetWindowThreadProcessId
TranslateMessage
SetActiveWindow
FillRect
DispatchMessageA
OffsetRect
InsertMenuItemA
DrawIconEx
GetDC
EnumThreadWindows
SetTimer
IsDialogMessageW
SetWindowLongW
FindWindowA
CreateIcon
OpenClipboard
GetClassInfoA
GetWindowTextLengthA
GetCapture
EnableScrollBar
GetTopWindow
SetPropA
GetDlgItem
wsprintfA
SetScrollRange
GetScrollInfo
PostQuitMessage
IsIconic
EmptyClipboard
GetClassNameA
KillTimer
CharUpperBuffA
CharNextA
DrawAnimatedRects
SetWindowsHookExA
DestroyWindow
MessageBeep
CreateMenu
GetMenuState
MapVirtualKeyA
MoveWindow
TranslateMDISysAccel
IsZoomed
DefWindowProcA
ReleaseDC
CharUpperA
SetCapture
SendMessageA
SetWindowPos
IsDialogMessageA
InflateRect
RemovePropA
IsCharLowerA
ShowWindow
GetMenu
LoadStringA
EndDialog
BeginPaint
IsMenu
GetClipboardData
DestroyMenu
ShowOwnedPopups
MapWindowPoints
GetKeyboardType
GetWindow
RegisterWindowMessageA
GetScrollRange

Exports

Exports

_KBWXo54R5
_ppjBqwcJN7VE@24
_YrqE3AO2@20
gV8vCvpIupyw0q
1HnP6Iyj
_iSmpAL6
dYZa1gp@20
kiIQwspjhYO
IR5aQDEih8Zw
o5V3LQOGPtn
_8a0oFRoR@16
_G7hnXKfe8
_mBlJ5FXvsZxDH@4
_J_G6T1
_qNzquDd1nK5c@20
_4x5Ra7
d2sOHpM7GNA@12
_OFi08
818tsC@12

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 98KB - Virtual size: 206KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1e40e44b2f768738280411813fdf16a2

Headers

File Characteristics

Imports

kernel32

shell32

gdi32

user32

Exports

Exports

Sections

.text Size: 13KB - Virtual size: 13KB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 98KB - Virtual size: 206KB

.rsrc Size: 2KB - Virtual size: 1KB

.text
Size: 13KB - Virtual size: 13KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 98KB - Virtual size: 206KB

.rsrc
Size: 2KB - Virtual size: 1KB