21fcb481c82d3775649adfec10cf84cc

General

Target

21fcb481c82d3775649adfec10cf84cc
Size

72KB
MD5

21fcb481c82d3775649adfec10cf84cc
SHA1

9fac796aa7a720ecc561b859c4048c19d0fc61f7
SHA256

76f3770534ff4f2710b121bba242f4ea89d9d0eb5e3d624a348c36c008baf018
SHA512

60d9b865902392c8090063d3f73e760abcac902e02fcc68728df9b5fbbe3f8a47d8275be807e32d966a6539209c88e3902165973e15bfc7c62a69be30cb36936
SSDEEP

1536:/zLq/76CFZcvo1rpQ1Eq+qYqozbKi3o5oynM+yJCM7j:7LemIivozuEOoXnynM+y

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
21fcb481c82d3775649adfec10cf84cc

Files

21fcb481c82d3775649adfec10cf84cc
.exe windows:4 windows x86 arch:x86

753ead28576492dd940d000c52d33ef4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ConnectNamedPipe
EnumTimeFormatsW
ExitProcess
GetCompressedFileSizeA
GetConsoleScreenBufferInfo
GetDefaultCommConfigA
GetDriveTypeW
GetModuleHandleW
GetProcessShutdownParameters
GetThreadContext
GetThreadTimes
GlobalLock
LocalLock
PeekConsoleInputW
ReadConsoleOutputCharacterA
RequestDeviceWakeup
RtlZeroMemory
SetCommBreak
SetLocalTime
SetPriorityClass
TerminateProcess
VirtualProtectEx
WriteConsoleInputA
WritePrivateProfileStringA
_hwrite

user32

CreateDialogParamA
DdeAddData
DeleteMenu
DlgDirSelectComboBoxExW
DrawEdge
DrawFrameControl
DrawStateA
DrawStateW
DrawTextExW
EnumDesktopsW
EnumPropsA
GetKeyNameTextA
GetKeyNameTextW
GetSubMenu
GetWindow
IMPQueryIMEW
InvalidateRgn
MapVirtualKeyA
SetMenuItemBitmaps
SetTimer
WINNLSEnableIME

gdi32

CreateBitmapIndirect
CreateDIBPatternBrush
DescribePixelFormat
ExtTextOutW
FloodFill
GetCharABCWidthsW
GetCharWidth32A
GetCharWidthW
GetColorAdjustment
GetKerningPairsA
GetLayout
GetLogColorSpaceA
GetMetaFileBitsEx
GetNearestColor
GetOutlineTextMetricsA
GetPolyFillMode
GetStretchBltMode
GetTextExtentExPointA
GetTextMetricsA
OffsetClipRgn
ResizePalette
SetPaletteEntries
SetPixelFormat
SetPixelV
SetTextAlign
SetTextJustification
StartDocW

Sections

.text
Size: 4KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 60KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

753ead28576492dd940d000c52d33ef4

Headers

File Characteristics

Imports

kernel32

user32

gdi32

Sections

.text Size: 4KB - Virtual size: 20KB

.data Size: 60KB - Virtual size: 72KB

.idata Size: - Virtual size: 12KB

.rsrc Size: 4KB - Virtual size: 16KB

.text
Size: 4KB - Virtual size: 20KB

.data
Size: 60KB - Virtual size: 72KB

.idata
Size: - Virtual size: 12KB

.rsrc
Size: 4KB - Virtual size: 16KB