24cb857e7a98eb2852a887f9a5d957ea

General

Target

24cb857e7a98eb2852a887f9a5d957ea
Size

68KB
MD5

24cb857e7a98eb2852a887f9a5d957ea
SHA1

116510bc7b499001f36082e194a07c22ec1bccff
SHA256

3984c2b53442e692f4c12e8e79d7a9890730a1b4066607517403ac5cdae9d811
SHA512

73828583015afe1a03631b289fec47ff559a5360202b017210562704fa8e76e0895261984ace3418c2854453625351845c8243a048b166423ed4c0f6b52678d9
SSDEEP

1536:CVlRTWxTeJNaVKZ4M06wQJ7W1ReTiPh4kuZ:IlRTWxTeJNgKZ4a7EYq4VZ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
24cb857e7a98eb2852a887f9a5d957ea

Files

24cb857e7a98eb2852a887f9a5d957ea
.exe windows:4 windows x86 arch:x86

c8697db8fbf802f8734cd7fb15db741c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpyW
FindClose
CancelWaitableTimer
Sleep
GlobalAddAtomW
LoadResource
LoadLibraryA
WriteFile
GetModuleFileNameW
GetFileAttributesExW
GetUserDefaultLangID
SetThreadPriority
FindNextFileW
ResumeThread
GetDriveTypeW
GetProcAddress
GetCurrentProcessId
CreateEventW
WaitForMultipleObjects
GetCurrentThreadId
LoadLibraryW
CreateWaitableTimerW
SetEvent
GetTickCount
LockResource
TerminateThread
DuplicateHandle
FreeLibrary
ReadProcessMemory
VirtualFree
SetCurrentDirectoryW

user32

TranslateMessage
LoadImageW
EnableWindow
GetClassNameW
GetWindowThreadProcessId
ReleaseCapture
DispatchMessageW
SetCursorPos
LoadBitmapW
CreateWindowExW
DialogBoxParamW
GetKeyState
EndDialog
SystemParametersInfoW
GetWindowTextW
IsDlgButtonChecked
LoadIconW
GetCursorPos
SetWindowPos
RegisterClassExW
OffsetRect
SetDlgItemTextW
RedrawWindow
SetWindowTextW

gdi32

CreatePen
SetDIBits
DeleteDC
GetClipBox
CreateDCW
SetTextColor

advapi32

RegNotifyChangeKeyValue
SetSecurityDescriptorDacl
RegDeleteValueW
RegCloseKey
RegOpenKeyExW
RegCreateKeyExW

Sections

.text
Size: 56KB - Virtual size: 53KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

c8697db8fbf802f8734cd7fb15db741c

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

Sections

.text Size: 56KB - Virtual size: 53KB

.rdata Size: 4KB - Virtual size: 1KB

.data Size: 4KB - Virtual size: 1KB

.text
Size: 56KB - Virtual size: 53KB

.rdata
Size: 4KB - Virtual size: 1KB

.data
Size: 4KB - Virtual size: 1KB