17a709395b3ae88b2dcd5ea9d141d533

Sharing

Copy URL Twitter E-mail

General

Target

17a709395b3ae88b2dcd5ea9d141d533
Size

60KB
MD5

17a709395b3ae88b2dcd5ea9d141d533
SHA1

1d89f8d1fb8a61eb6a6358087e00686292dff66a
SHA256

5c020fb70cf9d337c5805737960a89d44b8b7e140fc14ad3d69f56cffa224a27
SHA512

1af955535e4952ff4fd65c9536ae7130b1b0ffb9e69623575f6706e7395d8af14c765ea03091b80d167518ffb3bacd6f1e371fca0eae68b5b0bb6033dd1ba13a
SSDEEP

1536:4uE4VvTaE7TxUg5wQDi9R0zZQ2vFce50ntWmNSU:4u3VU2wD9RmJEtWvU

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
17a709395b3ae88b2dcd5ea9d141d533

Files

17a709395b3ae88b2dcd5ea9d141d533
.exe windows:5 windows x86 arch:x86

501e7ef3ed8801a3e7540468bd19b0be

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

SetWindowLongW
RedrawWindow
PtInRect
RegisterWindowMessageW
GetClassNameW
ShowWindow
CharUpperA
RegisterClipboardFormatW
IsRectEmpty
RegisterClassExW
GetIconInfo
LoadStringA
GetTopWindow
GetWindowLongW
ReleaseDC
MapWindowPoints
RemoveMenu
EnumWindows
GetDlgItemTextW
SetWindowsHookExA
SystemParametersInfoA
SetFocus
TrackPopupMenu
DefWindowProcA
EndPaint
SystemParametersInfoW
SetWindowTextW
GetMenuItemCount
InflateRect
LoadBitmapW
RegisterClassA
SetDlgItemTextA
RegisterClassW

kernel32

LoadLibraryA
GetFullPathNameA
MulDiv
ExpandEnvironmentStringsW
VirtualAlloc
SetFileAttributesW
FindFirstFileW
DuplicateHandle
CompareStringA
VirtualQuery
FreeEnvironmentStringsA
TlsAlloc
ExitProcess
GetModuleFileNameW
TlsGetValue
lstrcmpiW
GetCurrentThread
SetFileTime
VirtualFree
InterlockedDecrement
WriteFile
lstrcmpiA
IsValidCodePage
LoadResource
WritePrivateProfileStringA
SetLastError
DeviceIoControl
GetStdHandle
HeapAlloc
GetVolumeInformationW
SetHandleCount
LeaveCriticalSection
lstrlenA
EnumSystemLocalesA
CreateFileW
EnterCriticalSection
GetVersionExW
DeleteCriticalSection
LoadLibraryExW
GetEnvironmentVariableA
GetDriveTypeW

msvcrt

??3@YAXPAX@Z
malloc
iswspace
__getmainargs
__set_app_type
__p__commode
fclose
_exit
??1type_info@@UAE@XZ
exit
_wcsicmp
fprintf
__wgetmainargs
_lock
time
memset
_wcsnicmp
_vsnprintf
isdigit

Sections

.text
Size: 47KB - Virtual size: 47KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 92KB - Virtual size: 92KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 15KB - Virtual size: 210KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 1024B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 1024B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

501e7ef3ed8801a3e7540468bd19b0be

Headers

DLL Characteristics

File Characteristics

Imports

user32

kernel32

msvcrt

Sections

.text Size: 47KB - Virtual size: 47KB

.rdata Size: 92KB - Virtual size: 92KB

.data Size: 15KB - Virtual size: 210KB

.rsrc Size: 1024B - Virtual size: 1024B

.reloc Size: 1024B - Virtual size: 1024B

.text
Size: 47KB - Virtual size: 47KB

.rdata
Size: 92KB - Virtual size: 92KB

.data
Size: 15KB - Virtual size: 210KB

.rsrc
Size: 1024B - Virtual size: 1024B

.reloc
Size: 1024B - Virtual size: 1024B