157bd085f519a81226a6f43205542878

Sharing

Copy URL Twitter E-mail

General

Target

157bd085f519a81226a6f43205542878
Size

44KB
MD5

157bd085f519a81226a6f43205542878
SHA1

8f4aec8316189fc65a78cfd4224cef97e673cbb8
SHA256

123a274c47eb652c1cbacffc6fa21f2f60e64f66ca844d6d09e7750c2ea85cdd
SHA512

17732ec39a2da13789b2ca9517a8cab2691b5e6dbaff06b6175de4d34ef553723d909ef9f8c38159a775e149e6372a1e827e31c753152445415be8511840b2fb
SSDEEP

768:lNuGcK5ri2DF7D49Xqj/QJJJQiNAeUjqiugJbXXLbJC6WvVKoYXN4yZK:bur4fKqAmiSe/iHR5C6dzd4R

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
157bd085f519a81226a6f43205542878

Files

157bd085f519a81226a6f43205542878
.exe windows:5 windows x86 arch:x86

a9960013c3fe5ee79d6e102cdb7cc03e

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

OffsetViewportOrgEx
PolyBezier
SetBitmapDimensionEx
LineTo
GetTextExtentPointA
GetWindowOrgEx

kernel32

GetTempPathW
lstrcmpiA
SetThreadExecutionState
ExitProcess
GetACP
GetFileAttributesExW
WaitForSingleObjectEx
lstrlenA
GlobalFlags
GetCurrentThread
EnterCriticalSection

user32

LockWindowUpdate
UnloadKeyboardLayout
GetForegroundWindow
GetSysColorBrush
TrackPopupMenu
MapDialogRect
wvsprintfW
DrawAnimatedRects
GetShellWindow
LoadCursorA
DrawStateW
LoadIconW
GetDesktopWindow

Exports

Exports

?_Qo_feG__EP@@YGIPAJ@Z
?_xx_jfaJ_o___BTTF@@YGDIG@Z
?TJ_X_Y_A@@YGXDPAI@Z
?uvIe__qlg@@YGXGE@Z
?UD_KR_WLZNRvoayb_mj@@YGJJ@Z
?OOANSw_@@YGGF@Z
?m_oci_wfh@@YGPAFPADG@Z

Sections

.text
Size: 512B - Virtual size: 132B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.code
Size: 22KB - Virtual size: 22KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 1024B - Virtual size: 786B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 38KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 441B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a9960013c3fe5ee79d6e102cdb7cc03e

Headers

File Characteristics

Imports

gdi32

kernel32

user32

Exports

Exports

Sections

.text Size: 512B - Virtual size: 132B

.code Size: 22KB - Virtual size: 22KB

.idata Size: 1024B - Virtual size: 786B

.data Size: 6KB - Virtual size: 38KB

.rdata Size: 8KB - Virtual size: 8KB

.edata Size: 512B - Virtual size: 441B

.rsrc Size: 2KB - Virtual size: 4KB

.reloc Size: 1KB - Virtual size: 1KB

.text
Size: 512B - Virtual size: 132B

.code
Size: 22KB - Virtual size: 22KB

.idata
Size: 1024B - Virtual size: 786B

.data
Size: 6KB - Virtual size: 38KB

.rdata
Size: 8KB - Virtual size: 8KB

.edata
Size: 512B - Virtual size: 441B

.rsrc
Size: 2KB - Virtual size: 4KB

.reloc
Size: 1KB - Virtual size: 1KB