15c9f33020cb3b36f62c22b0a6ab3341

General

Target

15c9f33020cb3b36f62c22b0a6ab3341
Size

53KB
MD5

15c9f33020cb3b36f62c22b0a6ab3341
SHA1

30c173385279a4e343b62a47f389971c61d7044b
SHA256

af5ee6377a26f8cdf792a8d3cb61a9f2c58463f87bfc99704bf1420d904e90eb
SHA512

9fb715cf0fc38aedb378838a7b0d0fb52fbb67492741ab334eb61c361ca959cd33279ea1d797781f107319195ab6e01b140a8d39cf05c0349fd636a1b1045702
SSDEEP

1536:ZH1P/A6xWbo4PenJojp0fYUJ9zDjH80Re4p3:ZH1P/AcWHPenJojKJ9DHde49

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
15c9f33020cb3b36f62c22b0a6ab3341

Files

15c9f33020cb3b36f62c22b0a6ab3341
.exe windows:4 windows x86 arch:x86

94b0fdba962aaf612a6aade78ad79088

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleFileNameA
GetCPInfo
GetVersion
GetOEMCP
GetACP
LCMapStringA
lstrcatA
MultiByteToWideChar
GetCurrentProcess
lstrcpyA
GetStdHandle
GetCommandLineA
CreateFileA
TerminateProcess
GetStringTypeW
lstrcpynA
SetHandleCount
lstrcpynW
GetStringTypeA
LCMapStringW
GetFileType
WriteFile
SetFilePointer
GetStartupInfoA

user32

EndDialog
DrawIconEx
DrawIcon
LoadMenuA
IsMenu
InsertMenuA
IsWindow
CopyRect
CopyIcon
CreateIcon
GetDlgItem
GetWindowTextA
DrawTextW
GetMenu
DrawTextA
GetWindowTextLengthA
GetDC
CopyImage
GetFocus
CloseWindow
DialogBoxParamW
DialogBoxParamA
GetCursor
LoadCursorA

comctl32

CreateToolbar
ImageList_GetIcon
InitCommonControls
CreateUpDownControl
ImageList_DrawEx
ImageList_Add
ImageList_GetIconSize
CreateStatusWindow
ImageList_DragEnter
CreateToolbarEx

advapi32

RegSetValueA
RegCreateKeyA
RegCreateKeyExW
RegEnumValueA
RegDeleteKeyW
RegCreateKeyExA
RegQueryValueExW
RegDeleteValueW
RegDeleteKeyA
RegSetValueW
RegOpenKeyA
RegOpenKeyExW

Sections

.text
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 42KB - Virtual size: 17.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

94b0fdba962aaf612a6aade78ad79088

Headers

File Characteristics

Imports

kernel32

user32

comctl32

advapi32

Sections

.text Size: 7KB - Virtual size: 7KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 42KB - Virtual size: 17.4MB

.text
Size: 7KB - Virtual size: 7KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 42KB - Virtual size: 17.4MB