25030672ff0461e1b24527b9cf9b1db4

Sharing

Copy URL

Twitter E-mail

General

Target

25030672ff0461e1b24527b9cf9b1db4
Size

84KB
MD5

25030672ff0461e1b24527b9cf9b1db4
SHA1

e324307451b6d9fb7480fa7c5bb09cc4fa2092f6
SHA256

5fcb88c2ed77cb2ea0670687b4557b0e32ef58094f2f372f878c924106a9ff85
SHA512

ce8a75934378e1a189f230eeb35de62a789e6b47f219f65b66356865a814eab8f0308643556761f57ceb238558ad5cac4db07cc77074fb32b6e3bcfdcb712c9a
SSDEEP

1536:DLXeVReQoNHv/Le3O/zewRKiFVBT0I9dlCOFEsdD29Sb2i6Gd:DoXa3qcewRKEz0IpCgdgniNd

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
25030672ff0461e1b24527b9cf9b1db4

Files

25030672ff0461e1b24527b9cf9b1db4
.exe windows:4 windows x86 arch:x86

004b95a404c6831d6f66d8e482b59e2a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

DialogBoxParamA
LoadMenuA
EndDialog
IsWindow
CreateIcon
DrawIcon
CopyIcon
GetFocus
DrawIconEx
BlockInput
CalcMenuBar
CopyRect
DrawTextW
IsMenu
CloseWindow
InsertMenuA

comctl32

ImageList_Copy
ImageList_DragLeave
ImageList_ReplaceIcon
ImageList_LoadImage
ImageList_GetIconSize
ImageList_GetImageInfo
ImageList_EndDrag
ImageList_LoadImageA
ImageList_AddMasked
ImageList_DrawEx
ImageList_LoadImageW
ImageList_Read
ImageList_GetDragImage
ImageList_Create
InitCommonControls
ImageList_Destroy
ImageList_GetIcon

advapi32

RegOpenKeyExW
RegEnumKeyW
RegLoadKeyA
RegCreateKeyExW
RegDeleteValueW
RegDeleteKeyA
RegGetKeySecurity
RegQueryInfoKeyW
RegDeleteValueA
RegEnumKeyA
RegQueryInfoKeyA
RegQueryValueW
RegEnumKeyExW
RegQueryValueExW
RegEnumValueA
RegQueryValueExA
RegEnumKeyExA
RegCreateKeyW
RegDeleteKeyW

kernel32

ReadFile
OpenFile
CopyFileExA
SetLastError
GetLastError
GetFileSize
CreateProcessA
GlobalFree
OpenFileMappingA
GetConsoleMode
CopyFileW
CreateDirectoryA
CopyFileExW
GetCommandLineA
GetCPInfo
DeleteAtom
FindAtomA

gdi32

RestoreDC
GetBitmapBits
CreateSolidBrush
GetPixel
GetDCOrgEx
AddFontResourceA
AbortPath
AddFontResourceTracking
GetBrushOrgEx
AddFontResourceExW
CloseFigure
BeginPath
AddFontResourceExA
AddFontResourceW
GetPixel
ClearBrushAttributes
CancelDC

Sections

.text
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 64KB - Virtual size: 174KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

004b95a404c6831d6f66d8e482b59e2a

Headers

File Characteristics

Imports

user32

comctl32

advapi32

kernel32

gdi32

Sections

.text Size: 8KB - Virtual size: 4KB

.rdata Size: 4KB - Virtual size: 2KB

.data Size: 64KB - Virtual size: 174KB

.rsrc Size: 4KB - Virtual size: 2KB

.text
Size: 8KB - Virtual size: 4KB

.rdata
Size: 4KB - Virtual size: 2KB

.data
Size: 64KB - Virtual size: 174KB

.rsrc
Size: 4KB - Virtual size: 2KB