18554acda740c44b1151d53ce1495222

General

Target

18554acda740c44b1151d53ce1495222
Size

97KB
MD5

18554acda740c44b1151d53ce1495222
SHA1

34c26ef0d100e6be82db01e07f6262f29f1f2afc
SHA256

462938b4b390cc3ecfa784e3c122c2f591d04fc389e1f6007d8da2d71d16127d
SHA512

6fc47f5340d9757d974db4da9d549a8ae9c250d5b0bbf02534537cef734eab44d454a5c25c581160320b07aea8bb5536d76f352b35fcac22cc86e7a53d865f89
SSDEEP

1536:c1tYYR1UG4blYdfAnJGtPlqBmTiZmuzJkqlKiZ5mWVZfQwl3MyIvA5lMtQGOq:c1v80AnWlFTigu9kqpDzVFEvvnOq

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
18554acda740c44b1151d53ce1495222

Files

18554acda740c44b1151d53ce1495222
.exe windows:4 windows x86 arch:x86

8aee4c11aef706fb0054fc7e63208afa

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

DdeInitializeW
DdeCreateStringHandleW
DdeUninitialize
DdeInitializeA
DdeCreateStringHandleA
DdeClientTransaction
GetDesktopWindow
SendMessageTimeoutA
DdeAccessData
DdeUnaccessData
DdeConnect
DdeConnectList
DdeQueryNextServer
DdeQueryConvInfo
GetParent
IsIconic
ShowWindow
SetForegroundWindow
DdeFreeDataHandle
DdeFreeStringHandle
DdeDisconnect
DdeDisconnectList

kernel32

GetLastError
GetModuleFileNameW
ExpandEnvironmentStringsA
WideCharToMultiByte
GlobalFree
GlobalAlloc
GetProcAddress
LoadLibraryA
GetVersion
GetVersionExW
GetUserDefaultLangID
CloseHandle
MultiByteToWideChar
GetACP
ReadFile
SetFilePointer
CreateProcessW
CreateProcessA
SetLastError
CreateFileA
CreateFileW
CreateMutexA
CreateMutexW
ReleaseMutex
GetCommandLineW
GetModuleFileNameA
ExpandEnvironmentStringsW
ExitProcess

advapi32

RegEnumValueA
RegSetValueExW
RegSetValueExA
RegQueryValueExW
RegQueryValueExA
RegOpenKeyExW
RegOpenKeyExA
RegEnumValueW
RegCloseKey
RegEnumKeyExW
RegEnumKeyExA
RegDeleteValueW
RegDeleteValueA
RegDeleteKeyW
RegDeleteKeyA
RegCreateKeyExW
RegCreateKeyExA

ole32

CoCreateInstance
CoUninitialize
CoInitialize

Sections

.text
Size: 48KB - Virtual size: 46KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 72KB - Virtual size: 72KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

8aee4c11aef706fb0054fc7e63208afa

Headers

File Characteristics

Imports

user32

kernel32

advapi32

ole32

Sections

.text Size: 48KB - Virtual size: 46KB

.data Size: 4KB - Virtual size: 1KB

.rsrc Size: 72KB - Virtual size: 72KB

.text
Size: 48KB - Virtual size: 46KB

.data
Size: 4KB - Virtual size: 1KB

.rsrc
Size: 72KB - Virtual size: 72KB