211a141834c0a3ec09688610ce2408d4

General

Target

211a141834c0a3ec09688610ce2408d4
Size

175KB
MD5

211a141834c0a3ec09688610ce2408d4
SHA1

424a54ff7e55dad0eda9f5f94078c8ddcd07bf52
SHA256

35ea9564b7ca17cf32b2741cf2a63b224322580bf0dadfea0d7a14fdc18025e3
SHA512

93676a08e7526eb9965676f2ee45ea1bb7ca8283665964b4a642ee4055a1ff74c5570840bf5d07974305378bd9e3aa89020aa90e588069138f97f712d2ea55d5
SSDEEP

3072:w7i91PjWD4dcpG7Ee2Y/ExrF5XWLxaKAnXv01/0sChYuFZeaT00XH0Ewy:X91PSHIv2Y/c5XWLxaRW3MaE060Eb

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
211a141834c0a3ec09688610ce2408d4

Files

211a141834c0a3ec09688610ce2408d4
.exe windows:4 windows x86 arch:x86

5e78140fb286b2eae7a389734d649bf5

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

mprapi

MprConfigServerConnect
MprConfigServerDisconnect
MprConfigGetFriendlyName

shell32

SHGetSpecialFolderPathA

setupapi

pSetupWriteLogError
SetupDiGetDeviceRegistryPropertyW
CMP_WaitNoPendingInstallEvents
CM_Get_DevNode_Status

comctl32

ImageList_DrawEx
ImageList_GetIconSize
ImageList_Create
ImageList_Add
ImageList_Destroy

gdi32

CreateFontIndirectA
PlgBlt
FlattenPath
GetBkColor
CreatePen
RoundRect
GetBitmapBits
SetStretchBltMode
GetPath
AnimatePalette
SetTextColor
StrokePath
ExtCreatePen
PolyBezier
SetDIBits

comdlg32

GetFileTitleA

kernel32

SetEndOfFile
CompareStringW
GetAtomNameW
FileTimeToSystemTime
FindResourceExA
GetFileType
GetVersionExW
GetFileTime
UnlockFile
EnumResourceNamesA
SearchPathW
GetVolumeInformationW
GetFileAttributesA
GetUserDefaultLangID
FileTimeToLocalFileTime
IsDBCSLeadByte
GetProfileStringW
IsBadStringPtrA
FlushFileBuffers
LockFile
GetSystemDirectoryW

Sections

.text
Size: 93KB - Virtual size: 93KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 78KB - Virtual size: 77KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 116KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5e78140fb286b2eae7a389734d649bf5

Headers

File Characteristics

Imports

mprapi

shell32

setupapi

comctl32

gdi32

comdlg32

kernel32

Sections

.text Size: 93KB - Virtual size: 93KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 78KB - Virtual size: 77KB

.reloc Size: 1024B - Virtual size: 116KB

.text
Size: 93KB - Virtual size: 93KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 78KB - Virtual size: 77KB

.reloc
Size: 1024B - Virtual size: 116KB