13626df59c414238243d4af7d36db86a

General

Target

13626df59c414238243d4af7d36db86a
Size

56KB
MD5

13626df59c414238243d4af7d36db86a
SHA1

c2cdc150a472ed919e552249f72e7360ea029663
SHA256

3333b7c81be9407d3223e3225af3398be649daba6799f072cdfc09081f8d98e4
SHA512

e142a4aa3a14d5c65a73c4129b23a54f3ccbf0ef2a3f153a49dfafba9ec8dc9d62467be3fc3a2ffb4859777b0edefba23a3990e1bc08306b0cf5df3e1fe91707
SSDEEP

1536:bLTLojPQmUq4Iox5injnsrTAm26YrcCD4wE+PSXtz6w:QjPdsIoxU7V6sTE+Q4w

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
13626df59c414238243d4af7d36db86a

Files

13626df59c414238243d4af7d36db86a
.exe windows:4 windows x86 arch:x86

6ef7eb2c3270628194aa70e3262bbf2a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetPrivateProfileStringW
GetProcAddress
FindNextChangeNotification
LoadLibraryW
SetCurrentDirectoryW
SetLastError
GetLastError
MoveFileW
ResetEvent
GetCurrentThreadId
GetModuleFileNameW
GetUserDefaultLangID
CreateFileW
MultiByteToWideChar
GetFileAttributesW
WaitForMultipleObjects
LoadLibraryA
WriteFile
VirtualFree
WritePrivateProfileStringW
FindNextFileW
FindFirstFileW
FreeLibrary
CancelWaitableTimer
SetFilePointer
GetFileAttributesExW
QueryDosDeviceW
GlobalAlloc
CloseHandle

user32

IsWindow
GetClassNameW
DrawTextW
LoadCursorW
GetWindowThreadProcessId
TranslateMessage
DestroyIcon
SetWindowPos
DialogBoxParamW
DestroyMenu
DispatchMessageW
SetCapture
GetMessageW
GetWindowRect
WindowFromPoint
TrackPopupMenu
GetWindowDC
SetWindowTextW
GetSystemMetrics
SystemParametersInfoW

gdi32

StretchBlt
GetObjectW
Rectangle
SetBkMode
DPtoLP
SetBkColor
CreateDCW
DeleteDC

advapi32

SetSecurityDescriptorDacl
StartServiceW
RegCloseKey

Sections

.text
Size: 44KB - Virtual size: 41KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

6ef7eb2c3270628194aa70e3262bbf2a

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

Sections

.text Size: 44KB - Virtual size: 41KB

.rdata Size: 4KB - Virtual size: 1KB

.data Size: 4KB - Virtual size: 1KB

.text
Size: 44KB - Virtual size: 41KB

.rdata
Size: 4KB - Virtual size: 1KB

.data
Size: 4KB - Virtual size: 1KB