145b537b1c11f0faf03b397d0fb96fe3

Sharing

Copy URL

Twitter E-mail

General

Target

145b537b1c11f0faf03b397d0fb96fe3
Size

174KB
MD5

145b537b1c11f0faf03b397d0fb96fe3
SHA1

4f9cc91a34c3b1edd72f4b5afecfd3695c58dbca
SHA256

e1f74c80fa76a1b7b66aeee0fd50cb8de17f49bb1ae9d9d2dd82cb4dd2e6596d
SHA512

c73977ede649d7eb22ebb964e57d7d3a23229489e67cb26520b7c2a20bc6aa9766db02621b8459e160c13db5d1cdf6a86b98524650a3cd7bd774a41ff89c0afd
SSDEEP

3072:O/MWN54iNYywxF/WgQOF00IHQ7IecytypTG8FLFXmPwXALuAkzP0bPS41hH2:yMWbwndlSmIDNnMwTXyq2hW

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
145b537b1c11f0faf03b397d0fb96fe3

Files

145b537b1c11f0faf03b397d0fb96fe3
.exe windows:4 windows x86 arch:x86

529382cf6082c0eb914a7d92cc64658c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_DEBUG_STRIPPED

Imports

gdi32

SetBkMode
GetDeviceCaps
CreateSolidBrush
TextOutA
EnumFontFamiliesExA
DeleteObject
GetTextExtentPoint32A
SelectObject
SetTextColor
RestoreDC
BitBlt
SaveDC
DeleteMetaFile
Rectangle
CreateRectRgn
CreateCompatibleDC
GetObjectA
DeleteDC
CreateFontIndirectA
GetStockObject
CreateCompatibleBitmap

version

GetFileVersionInfoA
VerQueryValueA
GetFileVersionInfoSizeA

shell32

SHGetMalloc
SHGetPathFromIDListA
SHGetSpecialFolderLocation

advapi32

RegCloseKey
RegQueryValueExA
RegCreateKeyExA
RegDeleteKeyA
RegOpenKeyA
RegOpenKeyExA
RegEnumKeyExA
RegSetValueExA

kernel32

SetTapeParameters
GetVersion
ClearCommError
FindClose
Sleep
InterlockedExchange
EnumResourceNamesA
GetCurrentProcessId
GetLocalTime
ExitProcess
GetWindowsDirectoryA
FindFirstFileA

user32

FillRect
MoveWindow
ReleaseCapture
GetWindowInfo
ReleaseDC
GetWindowLongA
IsWindow
SetWindowLongA
SetWindowPos
GetDC
GetSysColor
SetCursor
LoadCursorA
GetDlgItem
SetCapture

winmm

mciSendCommandA
sndPlaySoundA

ole32

CoTaskMemFree
ProgIDFromCLSID
StringFromCLSID

oleacc

LresultFromObject
CreateStdAccessibleObject

Sections

.text
Size: 145KB - Virtual size: 144KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 25KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.lib
Size: 512B - Virtual size: 76KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

529382cf6082c0eb914a7d92cc64658c

Headers

File Characteristics

Imports

gdi32

version

shell32

advapi32

kernel32

user32

winmm

ole32

oleacc

Sections

.text Size: 145KB - Virtual size: 144KB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 25KB - Virtual size: 25KB

.lib Size: 512B - Virtual size: 76KB

.text
Size: 145KB - Virtual size: 144KB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 25KB - Virtual size: 25KB

.lib
Size: 512B - Virtual size: 76KB