1759a42a8b0a52256888d5d0f38b5df0

General

Target

1759a42a8b0a52256888d5d0f38b5df0
Size

56KB
MD5

1759a42a8b0a52256888d5d0f38b5df0
SHA1

6aa44f2d34ecf0d1624f2c19cb9593901b7ede74
SHA256

7c6308f9d1a7a2cf4cd9161ca4e92a7d67ee14aedd0ce9b35c5d5b28a2317bd2
SHA512

fbcfaaf0d9afa3e5960f31cc1829ae249eb6ee5a7fa3cac6d3ede3c6f9833bc0255acfd782c2af1e5e683427ec114f765bc58537e452df2c1bccbf5bc0113211
SSDEEP

1536:KABwybL01JVwyhVRBwOnBmHY/yvqiy817ud3SbqxfCFJb/P:t/y3RrnBm4qvqQ7m3Sbqxf4J/P

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1759a42a8b0a52256888d5d0f38b5df0

Files

1759a42a8b0a52256888d5d0f38b5df0
.exe windows:4 windows x86 arch:x86

f7049c28b575d9d80e2a40260ab58f6c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

BuildCommDCBA
CompareStringW
DefineDosDeviceA
DeleteAtom
DisconnectNamedPipe
ExitProcess
FindCloseChangeNotification
GetCalendarInfoW
GetCurrentDirectoryA
GetDiskFreeSpaceW
GetPrivateProfileSectionW
GetSystemTimeAsFileTime
HeapFree
OpenEventA
OpenSemaphoreW
SearchPathA
SetLocalTime
SetProcessPriorityBoost
SetStdHandle
SetTapeParameters
TerminateThread
UnmapViewOfFile
VirtualLock
VirtualUnlock
lstrlen

user32

CharNextA
DdeReconnect
DdeSetQualityOfService
DdeSetUserHandle
EndPaint
EnumDesktopsW
GetClipboardFormatNameA
GetMenuItemCount
GetWindowRect
GetWindowThreadProcessId
IMPQueryIMEA
InvalidateRect
IsDialogMessageA
IsRectEmpty
OemToCharBuffW
RegisterClipboardFormatA
RemoveMenu
SendDlgItemMessageW
SetCaretPos
SetCursor
TabbedTextOutW
UnregisterClassA
WINNLSGetEnableStatus
WinHelpA
WindowFromDC

gdi32

CancelDC
CreateRectRgnIndirect
CreateScalableFontResourceW
CreateSolidBrush
DeleteObject
EnumICMProfilesA
GdiPlayDCScript
GetCharABCWidthsA
GetEnhMetaFileBits
GetMetaFileW
GetPolyFillMode
GetTextExtentExPointA
GetTextFaceA
GetTextMetricsA
IntersectClipRect
LPtoDP
PolylineTo
SetAbortProc
SetBkMode
SetICMProfileA
SetROP2
SetSystemPaletteUse
SetTextColor
UpdateICMRegKeyW

Sections

.text
Size: 512B - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f7049c28b575d9d80e2a40260ab58f6c

Headers

File Characteristics

Imports

kernel32

user32

gdi32

Sections

.text Size: 512B - Virtual size: 16KB

.data Size: 8KB - Virtual size: 20KB

.idata Size: - Virtual size: 4KB

.rsrc Size: 1024B - Virtual size: 8KB

.text
Size: 512B - Virtual size: 16KB

.data
Size: 8KB - Virtual size: 20KB

.idata
Size: - Virtual size: 4KB

.rsrc
Size: 1024B - Virtual size: 8KB