196e63927f05cd466d0e8306489c388d

General

Target

196e63927f05cd466d0e8306489c388d
Size

45KB
MD5

196e63927f05cd466d0e8306489c388d
SHA1

7670d02c013c3c47e4dbaa1a0b7936ecce2cb3cd
SHA256

7015b53f863b678d105d985ecc2c05227acb8aa49296ab62721cf9c325b034b9
SHA512

e8ab349b50f82ea855ae4c11aa1cf9a83fd4bbca0ff6c0c1af6dd426fb3f81b3cdb56a26e43ff6be516fc4a4c718910af0851af4a316f44d283b5aaa58e1121c
SSDEEP

768:9kqDxnA5RwQhvTdMnVpcDNAdja8U7e7YXIuU5i1VgXpbAth7rQ4:9kqDp4Ss7+p9Ce7YXbv1VK8nD

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
196e63927f05cd466d0e8306489c388d

Files

196e63927f05cd466d0e8306489c388d
.exe windows:4 windows x86 arch:x86

e2893b9d93aa821340deafdb7896ec61

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FindNextFileW
ReadDirectoryChangesW
PeekNamedPipe
SetVolumeLabelW
ConvertDefaultLocale
MoveFileW
SetInformationJobObject
GetCurrentProcess
SetConsoleOutputCP
ReleaseMutex
SetConsoleInputExeNameW
FormatMessageA
SetConsoleMenuClose
GetCurrencyFormatW
EnumResourceTypesA
MoveFileA
SetCommMask
GetShortPathNameA
MoveFileWithProgressA
WriteConsoleOutputW
DosPathToSessionPathA
ExitProcess
FindFirstVolumeMountPointA
MoveFileWithProgressW
FileTimeToDosDateTime
LocalReAlloc
FindAtomA

user32

EnumThreadWindows
SetActiveWindow
IsCharLowerW
CreateMDIWindowW
DialogBoxParamW
DialogBoxIndirectParamAorW
CreateDesktopA
CreateMenu
EndMenu
DialogBoxParamA
EmptyClipboard
CharToOemA
GetMenuStringW
WaitMessage
CreateDesktopW
GetLastActivePopup
GetDesktopWindow
TranslateAcceleratorA
CloseClipboard
SetWindowTextW
ShowWindow
MessageBoxIndirectW
IsCharAlphaW
EnableMenuItem
SetCursorPos
DeregisterShellHookWindow
GetCaretPos
GetWindowInfo
LockSetForegroundWindow

Sections

.text
Size: 32KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 7KB - Virtual size: 68KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

e2893b9d93aa821340deafdb7896ec61

Headers

File Characteristics

Imports

kernel32

user32

Sections

.text Size: 32KB - Virtual size: 32KB

.data Size: 7KB - Virtual size: 68KB

.rsrc Size: 4KB - Virtual size: 8KB

.text
Size: 32KB - Virtual size: 32KB

.data
Size: 7KB - Virtual size: 68KB

.rsrc
Size: 4KB - Virtual size: 8KB