19484a240a16c7faea84dcac0c38d118

Sharing

Copy URL

Twitter E-mail

General

Target

19484a240a16c7faea84dcac0c38d118
Size

60KB
MD5

19484a240a16c7faea84dcac0c38d118
SHA1

a89bc95a3dcc763e11b9cf25b4127d884b71a042
SHA256

17363e34921446bd0099ae5ce14c874d5fbcb6873ea25b1ec1d3e956e888157c
SHA512

47eb8811a4b0c864f11e53e00231557fbc638e809a05468fa9974bb7bef42a707bc9e441a387883a541b53ce988c38026fdc2b1831d5517c91053ad7a821921b
SSDEEP

1536:9EnnZupB2wwqyc9Pol9nHKHBxwMs3JVO:9qZG7yuQlhqHBxlsZV

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
19484a240a16c7faea84dcac0c38d118

Files

19484a240a16c7faea84dcac0c38d118
.exe windows:4 windows x86 arch:x86

44bcc5970e68f7296868b89ddd26e23a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

BuildCommDCBA
CopyFileW
CreateConsoleScreenBuffer
CreateFiber
CreateTapePartition
DefineDosDeviceA
EnumCalendarInfoExW
EscapeCommFunction
ExitProcess
GetCommandLineA
GetLogicalDriveStringsA
GetNumberOfConsoleInputEvents
GetProcessAffinityMask
GetShortPathNameW
MapViewOfFileEx
OpenWaitableTimerA
ReadFile
SetConsoleCP
SetConsoleCursorPosition
SetNamedPipeHandleState
SuspendThread
WaitForMultipleObjectsEx
WritePrivateProfileStructW
WriteProcessMemory
_hread

advapi32

AccessCheckAndAuditAlarmA
AddAccessDeniedAce
CopySid
CreatePrivateObjectSecurity
CryptGetKeyParam
CryptGetProvParam
DestroyPrivateObjectSecurity
DuplicateTokenEx
FreeSid
GetAce
GetAuditedPermissionsFromAclW
GetCurrentHwProfileW
GetFileSecurityW
GetKernelObjectSecurity
GetNamedSecurityInfoW
GetSecurityDescriptorOwner
GetSecurityInfo
GetSidSubAuthority
GetTrusteeNameW
InitializeAcl
InitializeSid
QueryServiceLockStatusA
RegConnectRegistryA
RegQueryValueExA
RegSaveKeyA
RegUnLoadKeyW
SetEntriesInAclW
SetServiceBits

user32

CheckMenuRadioItem
CheckRadioButton
ChildWindowFromPoint
CreateDesktopA
DdeDisconnect
DestroyMenu
DrawMenuBar
DrawStateW
EnableWindow
EnumDisplayMonitors
EnumThreadWindows
GetClassInfoW
GetClipCursor
GetClipboardOwner
GetWindowContextHelpId
HiliteMenuItem
IMPQueryIMEW
InsertMenuW
IntersectRect
OemToCharW
OpenClipboard
SetClassWord
SetRectEmpty
SetWindowLongW
SetWindowsHookExW
UnregisterHotKey

Sections

.text
Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 52KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

44bcc5970e68f7296868b89ddd26e23a

Headers

File Characteristics

Imports

kernel32

advapi32

user32

Sections

.text Size: 4KB - Virtual size: 8KB

.data Size: 52KB - Virtual size: 56KB

.idata Size: - Virtual size: 16KB

.rsrc Size: - Virtual size: 4KB

.text
Size: 4KB - Virtual size: 8KB

.data
Size: 52KB - Virtual size: 56KB

.idata
Size: - Virtual size: 16KB

.rsrc
Size: - Virtual size: 4KB