123b6670ce04a65d5cf9d22583adfc30

General

Target

123b6670ce04a65d5cf9d22583adfc30
Size

62KB
MD5

123b6670ce04a65d5cf9d22583adfc30
SHA1

0756348717646a7fd8da055ad1a1c229b59b9471
SHA256

a848f29ef5aba53e8ba1d22a901cb17ef67f061a30e914af2a6441986891f977
SHA512

585d9fd03f5b0f3e2a8b75e13662e2865489402b716755363e092d63fbdd158dad6b355a6979b612109f77670a3cead5ab387d2dde2e97a3be17f87246f1c1ab
SSDEEP

768:Ho30zmJhwYECJ5+/xs2aGu/e3/708afonM/yZmc6O52YYGKFryWwP:y0zSq1Ca/SdwA8aonM64cAy

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
123b6670ce04a65d5cf9d22583adfc30

Files

123b6670ce04a65d5cf9d22583adfc30
.exe windows:4 windows x86 arch:x86

55f7fadaafba0ca39140f983b859a219

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

TranslateAcceleratorA
GetClassNameW
SetUserObjectInformationA
CharUpperBuffW
GetDlgItemTextW
SetUserObjectInformationA
SendDlgItemMessageA
SendMessageCallbackW
CharLowerBuffW
DefMDIChildProcW
OpenDesktopA
SystemParametersInfoW
CharNextExA

kernel32

CreateNamedPipeW
GetBinaryTypeA
lstrcmpW
GetLongPathNameA
WritePrivateProfileStringA
GetLogicalDriveStringsA
GetCPInfoExA
GlobalAddAtomA
WriteConsoleW
RemoveDirectoryA
EnumCalendarInfoExA
GetProfileSectionW
EnumResourceNamesW
EnumResourceTypesA
GetConsoleCommandHistoryLengthA
GetPrivateProfileIntA
CompareStringA
QueryDosDeviceW
DefineDosDeviceA
SetLocaleInfoA
EnumResourceLanguagesA
BeginUpdateResourceA

msvcrt

iswpunct
_statusfp
memmove
wcsstr
wcscpy
_wfindnexti64
_spawnl
free
_wcsicmp
_wexecl

Sections

.code
Size: - Virtual size: 96KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.DATA
Size: 31KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 26KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CODE
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

55f7fadaafba0ca39140f983b859a219

Headers

File Characteristics

Imports

user32

kernel32

msvcrt

Sections

.code Size: - Virtual size: 96KB

.DATA Size: 31KB - Virtual size: 56KB

.text Size: 26KB - Virtual size: 28KB

.rsrc Size: 2KB - Virtual size: 1KB

.CODE Size: 1KB - Virtual size: 1KB

.code
Size: - Virtual size: 96KB

.DATA
Size: 31KB - Virtual size: 56KB

.text
Size: 26KB - Virtual size: 28KB

.rsrc
Size: 2KB - Virtual size: 1KB

.CODE
Size: 1KB - Virtual size: 1KB