15b9b465777cc8698a6fd2784435fa3a

Sharing

Copy URL

Twitter E-mail

General

Target

15b9b465777cc8698a6fd2784435fa3a
Size

809KB
MD5

15b9b465777cc8698a6fd2784435fa3a
SHA1

02292ed299e215b3b230a57b6db21fb667448ea1
SHA256

17a3d244da7722ed2efbec52ec4f8b6b8f178edf1b51d1e17aae5301314ae827
SHA512

1ff494090cf66527fce9536fe314a3810e2d507e899c8e927e8b71201122cec4fd1ea7d1d390cfd575912d242156d63d54b4de2fbc82cd72dbffb1f5419afdaa
SSDEEP

24576:CMKeKmwkhK6LvSDTAAa2YpXlAraUkfJjVQ0xm:CV14hKYvSParhrrxm

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
15b9b465777cc8698a6fd2784435fa3a

Files

15b9b465777cc8698a6fd2784435fa3a
.exe windows:4 windows x86 arch:x86

0c526d03d9c7a15191b2fc55e1c423fd

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

PostQuitMessage
SetWindowPos
GetDC
GetCursorPos
GetKeyState
GetParent
UpdateWindow
EnableWindow
TranslateMessage
EnableMenuItem
GetWindowLongA
EndPaint
SetFocus
BeginPaint
KillTimer
GetWindowRect
SetWindowLongA
DispatchMessageA
GetDlgItem
GetSysColor
SystemParametersInfoA
InvalidateRect
SendMessageA
GetClientRect

advapi32

RegOpenKeyExA
RegQueryValueExA
RegCreateKeyExA
RegSetValueExA
RegDeleteKeyA
RegDeleteKeyW
RegCloseKey

kernel32

GetFileAttributesW
FreeEnvironmentStringsA
DeleteCriticalSection
GetCurrentProcess
GetConsoleMode
GetLocaleInfoA
LocalAlloc
FreeEnvironmentStringsW
HeapDestroy
WideCharToMultiByte
GetStringTypeA
InterlockedExchange
WriteFile
GetSystemTimeAsFileTime
HeapReAlloc
GetStringTypeW
SetEvent
GetDriveTypeA
WaitForSingleObject
GetFileAttributesA
ReleaseMutex
GetConsoleOutputCP
GetStdHandle
SetStdHandle
HeapAlloc
GetCurrentProcessId
GetCurrentThreadId
GetModuleHandleA
GetTickCount
GetVersion
GetLastError
GetCommandLineA
ExitProcess
VirtualAlloc
GetOEMCP
FindResourceA
Sleep
VirtualFree
UnmapViewOfFile
GetACP
lstrcpynA
CloseHandle
SetFilePointer
TlsFree
RaiseException
GetCurrentThread
InterlockedCompareExchange
HeapSize
GetCurrentDirectoryA
GetCommandLineW
LockResource
GetEnvironmentStrings
lstrlenW
VirtualQuery
GetEnvironmentStringsW
GetThreadLocale
FindNextFileW
LCMapStringA
GetConsoleCP
GlobalFree
lstrlenA
GetSystemInfo
HeapCreate
LeaveCriticalSection
CreateFileA
TlsSetValue
GetFileType
GlobalLock
FindNextFileA
CompareStringA
GetDiskFreeSpaceA
FindFirstFileA
CompareStringW
GetProcessHeap
GetProcAddress
GetCPInfo
DeleteFileA
GetFileSize
GetStartupInfoA
LoadLibraryA
FlushFileBuffers
VirtualProtect
TlsAlloc
QueryPerformanceCounter
FreeLibrary
lstrcmpiA
SetHandleCount
EnterCriticalSection
HeapFree
WriteConsoleW
InterlockedIncrement
SetEndOfFile
GlobalAlloc
TerminateProcess
SetEnvironmentVariableA
SetUnhandledExceptionFilter
CreateThread
MultiByteToWideChar
UnhandledExceptionFilter
GetModuleFileNameA
GetVersionExA
GetModuleFileNameW
GetEnvironmentVariableA
SetLastError
FormatMessageA
InterlockedDecrement
FindClose
LoadResource
InitializeCriticalSection
LocalFree

Sections

.text
Size: 757KB - Virtual size: 1.1MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 27KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 18KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0c526d03d9c7a15191b2fc55e1c423fd

Headers

File Characteristics

Imports

user32

advapi32

kernel32

Sections

.text Size: 757KB - Virtual size: 1.1MB

.rdata Size: 4KB - Virtual size: 4KB

.data Size: 27KB - Virtual size: 26KB

.rsrc Size: 18KB - Virtual size: 17KB

.text
Size: 757KB - Virtual size: 1.1MB

.rdata
Size: 4KB - Virtual size: 4KB

.data
Size: 27KB - Virtual size: 26KB

.rsrc
Size: 18KB - Virtual size: 17KB