11261b1d9f0bd5c268dfcdf14f8e9e1a

General

Target

11261b1d9f0bd5c268dfcdf14f8e9e1a
Size

56KB
MD5

11261b1d9f0bd5c268dfcdf14f8e9e1a
SHA1

73ce7e87d99d58664ee95b65c9772f80cdea15d8
SHA256

5e9c3061f6ee90cf8469f627d84128eab21718ebbe56f2ad2edc20a1915ca9ce
SHA512

d50c07af7cf0468cbbdd2586ef2f6475f5a11f2ec229d543e9c1dd99ad9d1bc3e25502fd61512939811cd632296ef3689393cb73d14552a1092e67fafd68e6cc
SSDEEP

768:WF3GRFhL9m/hqi7b0bB9Vr/pCzMrbY1Cl+Emegpp9oxmQb+zGJOQp:WWbqqQKf8sbqg+Agla+zIt

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
11261b1d9f0bd5c268dfcdf14f8e9e1a

Files

11261b1d9f0bd5c268dfcdf14f8e9e1a
.exe windows:4 windows x86 arch:x86

2e6b203e9722efe0ad8f03f7bc5291e5

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleW
MulDiv
FindResourceExW
GetProcAddress
SetThreadPriority
GetLastError
GetUserDefaultLangID
GlobalFree
MultiByteToWideChar
GetVersion
FindResourceW
GetTickCount
CreateEventW
GetModuleFileNameW
GetCurrentThread
GetLocalTime
GetCurrentThreadId
WritePrivateProfileStringW
FindFirstFileW
WideCharToMultiByte
TerminateThread
GetCurrentProcessId
LoadLibraryA
FreeLibrary

user32

InvalidateRect
GetWindowTextW
GetWindowThreadProcessId
LoadIconW
GetDlgItem
UpdateWindow
LoadBitmapW
LoadImageW
VkKeyScanW
DestroyIcon
GetCursorPos
GetSysColor
SystemParametersInfoW
CreatePopupMenu
SetCapture
SetLayeredWindowAttributes
SetForegroundWindow
IsDlgButtonChecked
FillRect
RegisterHotKey
ReleaseCapture
DialogBoxParamW
OffsetRect
RedrawWindow
LoadCursorW
GetWindowDC
SetDlgItemTextW

gdi32

CreateBitmap
CreateICW
BitBlt
Rectangle
CreateCompatibleBitmap
GetObjectW

advapi32

GetUserNameW
SetSecurityDescriptorDacl
LookupAccountSidW
LookupPrivilegeValueW

Sections

.text
Size: 44KB - Virtual size: 41KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 1004B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

2e6b203e9722efe0ad8f03f7bc5291e5

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

Sections

.text Size: 44KB - Virtual size: 41KB

.rdata Size: 4KB - Virtual size: 1KB

.data Size: 4KB - Virtual size: 1004B

.text
Size: 44KB - Virtual size: 41KB

.rdata
Size: 4KB - Virtual size: 1KB

.data
Size: 4KB - Virtual size: 1004B