19520f544ad7a3b66ca6acfff9c8df3e

General

Target

19520f544ad7a3b66ca6acfff9c8df3e
Size

9KB
MD5

19520f544ad7a3b66ca6acfff9c8df3e
SHA1

6c5e8053e9a9f76ebc5ff2290ff0f21b511d421f
SHA256

4d442ddfeed25422ca6a967a32b7f8178c6689272bc1cde21caa02c62e748be7
SHA512

1444d252305fd98041513263a93dd4413dab0dbf623876bde83c2529c61a227bfdb5d06614e109052663e266e6214dc0dcf027eacf64184849efe126d9f5d2b6
SSDEEP

192:iEiCUiCfoNMVfCQU2RO4SXfIkYKXWw6hjbh1Yy5fdzdMfEmIMcM1Iki:3iTiCfvVUt4kfxKXh+4lz+MmIMEk

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
19520f544ad7a3b66ca6acfff9c8df3e

Files

19520f544ad7a3b66ca6acfff9c8df3e
.exe windows:4 windows x86 arch:x86

ad673f3d92253caeb02edcea76d1ca79

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ContinueDebugEvent
DefineDosDeviceA
ExitProcess
FindResourceExA
FlushViewOfFile
FoldStringA
FreeEnvironmentStringsW
GetAtomNameW
GetNumberFormatW
GetShortPathNameA
GlobalFree
InterlockedDecrement
IsDBCSLeadByteEx
IsValidCodePage
LocalAlloc
OpenWaitableTimerW
SetCommBreak
SetCommMask
SetThreadLocale
SetThreadPriorityBoost
VirtualUnlock
lstrcpynW

user32

CharLowerW
CreateDesktopW
DdeConnect
DdeDisconnectList
DlgDirListComboBoxA
EnumPropsExW
EqualRect
GetClipboardFormatNameW
GetComboBoxInfo
GetInputState
GetMenuBarInfo
GetMenuState
GetSubMenu
GetWindowInfo
GetWindowThreadProcessId
IMPGetIMEA
IMPQueryIMEA
InsertMenuW
IsCharAlphaNumericA
IsDialogMessage
LockWindowUpdate
OemToCharBuffA
OemToCharW
OpenWindowStationA
SendMessageTimeoutA
SetFocus
SetPropW
SetWindowLongA
WinHelpW

gdi32

ColorCorrectPalette
CreateBitmap
CreateCompatibleBitmap
CreateDCA
CreateDIBSection
CreatePenIndirect
EqualRgn
GdiGetBatchLimit
GdiPlayDCScript
GetCharABCWidthsFloatW
GetClipBox
GetEnhMetaFileDescriptionW
GetOutlineTextMetricsA
GetTextAlign
GetTextExtentPoint32W
GetTextExtentPointW
GetViewportExtEx
PlayMetaFile
PolyPolygon
Rectangle
SelectObject
SelectPalette
SetDIBColorTable
SetMapMode
SetPixel
SetWindowExtEx
TextOutA

Sections

.text
Size: 512B - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ad673f3d92253caeb02edcea76d1ca79

Headers

File Characteristics

Imports

kernel32

user32

gdi32

Sections

.text Size: 512B - Virtual size: 16KB

.data Size: 8KB - Virtual size: 24KB

.idata Size: - Virtual size: 8KB

.rsrc Size: - Virtual size: 12KB

.text
Size: 512B - Virtual size: 16KB

.data
Size: 8KB - Virtual size: 24KB

.idata
Size: - Virtual size: 8KB

.rsrc
Size: - Virtual size: 12KB