18cfe51fc1d0e9e4e39fb3686ed62859

General

Target

18cfe51fc1d0e9e4e39fb3686ed62859
Size

10KB
MD5

18cfe51fc1d0e9e4e39fb3686ed62859
SHA1

c6f3bd0db4f9589930b73bc0ad6748059c66f322
SHA256

68637a8a5254edc92ef516bf5f023b77497f7eebf93cd4625671e33c229891af
SHA512

8ca231cbc09d2d37e257f0357eb4f3da3559675e6c219851eb5a2496f7d8e63b0ae4b810dc8c1880856bcafb86ce2c1a713230ac49491181b48cc410d89bcc4f
SSDEEP

192:bnUGk4FBNnM/oXCgUecUI8hWnhLgeHRWBJOHThu4VoQgaNTzRWzlzFwat:YGk4FBNnMuvUL4hWhkaRW2HTASgaNTzS

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
18cfe51fc1d0e9e4e39fb3686ed62859

Files

18cfe51fc1d0e9e4e39fb3686ed62859
.exe windows:4 windows x86 arch:x86

289d62423f475b038a2310324d300b22

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_ISOLATION
IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetTickCount
MoveFileExA
CreateDirectoryA
Sleep
lstrcmpiA
DeleteFileA
GetCurrentThreadId
GetTempFileNameA
GetSystemDirectoryA
GetTempPathA
GetLastError
CreateMutexA
ExitProcess
LoadLibraryA
FreeLibrary
CancelIo
lstrcatA
GetThreadPriority
GetCurrentProcess
GetStartupInfoA
CreateProcessA
FindFirstFileA
GetCurrentThread
GetModuleFileNameA
GetShortPathNameA
GetACP
CreateFileA
GetProcAddress
GetFileInformationByHandle
SetFilePointer
ReadFile
CloseHandle
GetCurrentProcessId
HeapAlloc
GetProcessHeap
HeapFree
GetFileSize

user32

GetTopWindow
wsprintfA
ClipCursor
GetCaretBlinkTime
GetClipCursor
GetCapture
ClientToScreen
GetCursor
DestroyCaret
SetActiveWindow
GetActiveWindow
GetCaretPos

gdi32

CloseFigure
StartPage
EndPath
GdiSetBatchLimit
GetBkMode
GdiFlush
StrokeAndFillPath
EndPage
BeginPath
FillPath
CreateCompatibleBitmap
FlattenPath
WidenPath
AbortDoc
AbortPath
GetBrushOrgEx
StrokePath
EndDoc
GdiGetBatchLimit
CreateCompatibleDC
CancelDC
GetBkColor
GetColorSpace
UnrealizeObject
PathToRegion

Sections

.text
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 532B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 962B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

289d62423f475b038a2310324d300b22

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

Sections

.text Size: 5KB - Virtual size: 4KB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 512B - Virtual size: 532B

.reloc Size: 1024B - Virtual size: 962B

.text
Size: 5KB - Virtual size: 4KB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 512B - Virtual size: 532B

.reloc
Size: 1024B - Virtual size: 962B