1b735eaa78494debe75be234cf1b8041

Sharing

Copy URL Twitter E-mail

General

Target

1b735eaa78494debe75be234cf1b8041
Size

58KB
MD5

1b735eaa78494debe75be234cf1b8041
SHA1

62f32b5bc0ea86d3adaf28d220b84235088bb1ca
SHA256

7331f1dff8cf9032f9b6b21190925d1953c2926e2e7c6d6b3b2e488c013a5cca
SHA512

7ab945836cff5a47a185dd1300bce629dfa06f4b7146b2d894fca629ce3e9c333b86b9590d7f10c06f22ad9be747563c0b48dc795db4d9679318b0d6019e0b05
SSDEEP

1536:jAQwU55kGEitfn7k5TFyQIyCJrRMlDKvrkhldH1+qkS:T5kGfVQUJrR4KYhldV+qkS

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1b735eaa78494debe75be234cf1b8041

Files

1b735eaa78494debe75be234cf1b8041
.exe windows:4 windows x86 arch:x86

4cd1c8e97820da61f7f7ec7a919b952c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

ImageList_GetIconSize
ImageList_LoadImageW
ImageList_DragShowNolock
ImageList_GetImageRect
ImageList_DragMove
ImageList_DragEnter
InitCommonControls
ImageList_LoadImage
ImageList_Draw
ImageList_Replace
ImageList_GetDragImage
ImageList_Read
ImageList_BeginDrag
ImageList_GetImageCount
ImageList_Create
ImageList_AddMasked
ImageList_Copy
ImageList_AddIcon
ImageList_GetImageInfo
ImageList_ReplaceIcon
ImageList_GetImageRect
InitCommonControls
ImageList_Draw
ImageList_Replace
ImageList_GetIconSize
ImageList_GetDragImage
ImageList_DragEnter
ImageList_DrawIndirect
ImageList_DragShowNolock
ImageList_DrawEx
ImageList_LoadImageW
ImageList_Copy
ImageList_DragLeave
ImageList_EndDrag
ImageList_Destroy
ImageList_GetImageInfo
ImageList_LoadImage
ImageList_AddIcon
ImageList_LoadImageA
ImageList_BeginDrag

kernel32

DeleteAtom
GetCPInfo
CopyFileW
ReadConsoleA
DeleteFileA
ExitThread
SetLastError
OpenFile
CopyFileExW
GlobalFree
CreateProcessA
CopyFileExA
ReadFile
GetConsoleMode
GetCommandLineA
CreateThread
GetFileSize
WriteFile
GetLastError
FindFirstFileA
GetComputerNameA
GetCPInfo
CopyFileExW
CreateDirectoryA
ReadConsoleA
FindFirstFileA
GetFileTime
GetConsoleMode
ReadFile
SetLastError
GetComputerNameA
CopyFileA
FindAtomA
OpenFile
CopyFileExA
DeleteFileA
CreateThread
OpenFileMappingA
GetCommandLineA
DeleteFileW
DeleteAtom
ExitThread
Sleep
SetLastError
CreateDirectoryA
CopyFileExW
ReadConsoleA
DeleteFileA
GetFileSize
OpenFile
Sleep
GetComputerNameA
CreateProcessA
DeleteFileW
CopyFileA
FindFirstFileA
GetCPInfo
WriteFile
OpenFileMappingA
GlobalFree
CopyFileExA

advapi32

RegOpenKeyExA
RegDeleteKeyW
RegDeleteValueA
RegEnumKeyExA
RegCreateKeyExA
RegQueryValueExW
RegReplaceKeyA
RegQueryValueA
RegOpenKeyExW
RegCreateKeyW
RegCreateKeyExW
RegEnumValueW
RegReplaceKeyW
RegQueryInfoKeyW
RegDeleteValueW
RegQueryInfoKeyA
RegEnumKeyW
RegDeleteKeyA
RegEnumKeyW
RegReplaceKeyW
RegQueryValueExW
RegDeleteKeyW
RegDeleteValueA
RegQueryValueW
RegDeleteValueW
RegCreateKeyExW
RegLoadKeyA
RegEnumValueW
RegQueryInfoKeyW
RegQueryInfoKeyA
RegOpenKeyExW
RegOpenKeyA
RegFlushKey

user32

InsertMenuA
IsWindow
GetMenu
LoadMenuA
AlignRects
GetDC
CopyImage
CopyRect
GetFocus
BlockInput
DrawTextA
AppendMenuA
LoadCursorA
IsMenu
DialogBoxParamW
DrawIcon
DialogBoxParamA
GetCursor
DrawIconEx
EndDialog
CreateIcon
GetWindowTextLengthA
AppendMenuW

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 49KB - Virtual size: 105KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4cd1c8e97820da61f7f7ec7a919b952c

Headers

File Characteristics

Imports

comctl32

kernel32

advapi32

user32

Sections

.text Size: 3KB - Virtual size: 3KB

.rdata Size: 4KB - Virtual size: 4KB

.data Size: 49KB - Virtual size: 105KB

.text
Size: 3KB - Virtual size: 3KB

.rdata
Size: 4KB - Virtual size: 4KB

.data
Size: 49KB - Virtual size: 105KB