17c320754bf51deb1d6c08600173b1e0

General

Target

17c320754bf51deb1d6c08600173b1e0
Size

36KB
MD5

17c320754bf51deb1d6c08600173b1e0
SHA1

2c58ecae5fecf9d02940bb1d762ebcc88d71df9a
SHA256

ba672f21b9b17f4168a69d8587c152d363449b8bab81332db1a14d0c96341f55
SHA512

576bd8f629805e9e80c2b2ecb439ea35934642f967cfaea9e47757a1a12552b2ae840498ed26ad812185baec3870ffec4c3bf7be4da376e705cf220eef33782b
SSDEEP

192:MVAi3t1/5AzEgo3J2C8Ga9Mx2vxRoDTygoJBQmEeV8VeUa/4gD6lAUl:ze95AzEx3J2CDB2omJaheV8YUaalAG

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
17c320754bf51deb1d6c08600173b1e0

Files

17c320754bf51deb1d6c08600173b1e0
.exe windows:4 windows x86 arch:x86

b0f67a55d14606344dd1f67117e63fc1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegCreateKeyExA
RegQueryInfoKeyW
RegOpenKeyW
RegQueryValueA
RegDeleteKeyW
RegDeleteKeyA
RegOpenKeyExA
RegFlushKey
RegQueryValueW
RegOpenKeyExW
RegReplaceKeyA
RegOpenKeyA
RegDeleteValueW
RegLoadKeyA
RegEnumKeyExW
RegEnumKeyA

kernel32

lstrcmpiA
SetLastError
HeapAlloc
lstrcatA
lstrcpynA
GetLastError
GetStringTypeW
GetModuleFileNameA
GetFileAttributesA
GetStdHandle
GetStringTypeA
GlobalAlloc
GlobalFree
HeapFree
GetCommandLineA
GetFileType

user32

GetWindowTextA
AlignRects
GetMenu
DrawTextW
GetFocus
CopyImage
GetDlgItem
CreateIcon
LoadMenuA
DialogBoxParamA
DrawIcon
CalcMenuBar
InsertMenuA
CloseWindow
GetCursor
CopyRect
GetDC
AppendMenuA
GetWindowTextLengthA

comctl32

ImageList_DragMove
ImageList_LoadImageW
ImageList_DrawIndirect
ImageList_BeginDrag
ImageList_GetImageRect
ImageList_DragLeave
ImageList_GetIconSize
ImageList_ReplaceIcon
ImageList_Copy
ImageList_DragEnter
ImageList_GetImageInfo
ImageList_LoadImageA
ImageList_Draw
ImageList_Merge
ImageList_EndDrag
ImageList_DragShowNolock

Sections

.text
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: - Virtual size: 445B

IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 871B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b0f67a55d14606344dd1f67117e63fc1

Headers

File Characteristics

Imports

advapi32

kernel32

user32

comctl32

Sections

.text Size: 8KB - Virtual size: 4KB

.data Size: 16KB - Virtual size: 14KB

.rdata Size: 4KB - Virtual size: 11KB

.reloc Size: - Virtual size: 445B

.rsrc Size: 4KB - Virtual size: 871B

.text
Size: 8KB - Virtual size: 4KB

.data
Size: 16KB - Virtual size: 14KB

.rdata
Size: 4KB - Virtual size: 11KB

.reloc
Size: - Virtual size: 445B

.rsrc
Size: 4KB - Virtual size: 871B