18195d07d72c309a52f919f74d7dc53c

Sharing

Copy URL Twitter E-mail

General

Target

18195d07d72c309a52f919f74d7dc53c
Size

80KB
MD5

18195d07d72c309a52f919f74d7dc53c
SHA1

b4a511f72baa1960a6249d37cb470e810015ee6d
SHA256

29fe42b94ad53ecd26d11b2c7feb17cfb5403742f7f4979bdb35325de4aff896
SHA512

da656db0e4f3adc1ff48402db1e31a16dcf5489675c67d06095f991d2ec70d6a273865d6aa75651b124e7a44037601e0b5609c8b08f4191d8e6739e6b1cb08d7
SSDEEP

768:L9rMO3pIMhOB6DAsZkcgRXb0NC7jYx8ClNNln71A/PBy3qql:LGCDA3BYaCXnBABy3v

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
18195d07d72c309a52f919f74d7dc53c

Files

18195d07d72c309a52f919f74d7dc53c
.exe windows:4 windows x86 arch:x86

a6a5912f0d4967eccef3540a3d3d3cae

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetFileTime
GetStdHandle
ExitThread
ReadConsoleA
FindFirstFileA
DeleteAtom
CopyFileW
GetCommandLineA
CreateProcessA
GetLastError
CopyFileA
GetFileSize
GetComputerNameA
SetLastError
GetCPInfo
CopyFileExA
Sleep
CreateDirectoryA
ReadFile
GetFileTime
ReadConsoleA
GetFileSize
DeleteFileA
GetCPInfo
FindAtomA
CopyFileExW
GetLastError
CopyFileW
FindFirstFileA
CopyFileA
Sleep
CreateDirectoryA
GetFileTime
GetComputerNameA
WriteFile
OpenFileMappingA
CopyFileW
GetConsoleMode
FindAtomA
ReadConsoleA
ReadFile
CopyFileExA
OpenFile
GetLastError
CreateThread
DeleteFileA
GlobalFree

advapi32

RegGetKeySecurity
RegReplaceKeyW
RegOpenKeyW
RegCreateKeyExW
RegDeleteValueA
RegDeleteKeyA
RegFlushKey
RegCreateKeyExA
RegOpenKeyExW
RegEnumValueA
RegQueryValueExA
RegOpenKeyA
RegEnumKeyExA
RegEnumKeyA
RegQueryInfoKeyW
RegDeleteValueW
RegQueryValueExW
RegLoadKeyW
RegDeleteKeyW

user32

LoadMenuA
AppendMenuW
DrawTextA
DrawIcon
IsMenu
CreateIcon
AppendMenuA
GetDlgItem
GetFocus
InsertMenuA
GetCursor
IsWindow
GetWindowTextA
GetMenu
CopyIcon
AlignRects
CopyImage
CloseWindow
CopyRect
IsMenu
LoadCursorA
CopyImage
AppendMenuA
BlockInput
DrawIcon
IsWindow
InsertMenuA
DialogBoxParamA
GetFocus
GetWindowTextA
IsMenu
GetWindowTextA
DialogBoxParamW
GetDlgItem
LoadCursorA
GetCursor
GetDC
CopyImage
AppendMenuA
LoadMenuA
GetWindowTextLengthA
CreateIcon
GetMenu
BlockInput
CopyIcon

Sections

CODE
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.asdata
Size: 52KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tdata
Size: 4KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a6a5912f0d4967eccef3540a3d3d3cae

Headers

File Characteristics

Imports

kernel32

advapi32

user32

Sections

CODE Size: 4KB - Virtual size: 3KB

.asdata Size: 52KB - Virtual size: 48KB

.tls Size: 4KB - Virtual size: 4KB

.rdata Size: 8KB - Virtual size: 5KB

.idata Size: 4KB - Virtual size: 3KB

.tdata Size: 4KB - Virtual size: 28KB

CODE
Size: 4KB - Virtual size: 3KB

.asdata
Size: 52KB - Virtual size: 48KB

.tls
Size: 4KB - Virtual size: 4KB

.rdata
Size: 8KB - Virtual size: 5KB

.idata
Size: 4KB - Virtual size: 3KB

.tdata
Size: 4KB - Virtual size: 28KB