2400574c1689c5d019de28f93e105aea

Sharing

Copy URL

Twitter E-mail

General

Target

2400574c1689c5d019de28f93e105aea
Size

72KB
MD5

2400574c1689c5d019de28f93e105aea
SHA1

021eb14c19a7e19421a95d244a8a33acaf205ff1
SHA256

a91eb008c3aba1b49adec188029f781bc6f3679ee9e9a94bd044691cf6dc1ca7
SHA512

19a8b673392ea1b182ffc1942cf78e642d99272f8954e9d3d0953f9b713ae12d8137da50fba14dd18e84780b80d930ea28ada615686c737ca7d6851577f1c1c8
SSDEEP

1536:NwqNNU7qcT7seecf9cl7+XpMXemxlxLEVtS:NF6uQ7p1cl71eokVtS

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2400574c1689c5d019de28f93e105aea

Files

2400574c1689c5d019de28f93e105aea
.exe windows:4 windows x86 arch:x86

93159a060d172781b8f619a311986ed9

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

advapi32

RegQueryValueW
RegSetValueW
RegEnumKeyW
RegQueryValueExA
RegQueryValueExW
RegDeleteValueW
RegDeleteValueA
RegCreateKeyA
RegOpenKeyExA
RegDeleteKeyA
RegDeleteKeyW
RegOpenKeyExW
RegSetValueA
RegCreateKeyExA
RegEnumKeyExW
RegCreateKeyW
RegEnumKeyExA
RegEnumKeyA
RegOpenKeyW

user32

InsertMenuA
CopyRect
DialogBoxParamA
DrawIconEx
GetWindowTextA
GetMenu
CloseWindow
GetFocus
GetDlgItem
LoadMenuA
EndDialog
DrawTextA
CopyIcon
IsMenu
IsWindow
GetWindowTextLengthA
GetCursor
CreateIcon
DrawTextW
GetDC
DialogBoxParamW

comctl32

ImageList_EndDrag
ImageList_Destroy
ImageList_GetIcon
ImageList_Copy
ImageList_Create
CreateToolbarEx
CreateStatusWindowW
ImageList_Add
ImageList_LoadImageW
CreateStatusWindow
DrawStatusText
DllGetVersion
ImageList_LoadImageA
ImageList_DrawEx
ImageList_AddIcon
DrawStatusTextW
InitCommonControls
ImageList_DragEnter
CreateMappedBitmap
ImageList_GetIconSize

Sections

.text
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 55KB - Virtual size: 54KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bbs
Size: - Virtual size: 85KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tls
Size: - Virtual size: 203B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 516B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

93159a060d172781b8f619a311986ed9

Headers

File Characteristics

Imports

advapi32

user32

comctl32

Sections

.text Size: 11KB - Virtual size: 10KB

.data Size: 55KB - Virtual size: 54KB

.bbs Size: - Virtual size: 85KB

.idata Size: 3KB - Virtual size: 3KB

.tls Size: - Virtual size: 203B

.rdata Size: 512B - Virtual size: 1KB

.rsrc Size: 1024B - Virtual size: 516B

.text
Size: 11KB - Virtual size: 10KB

.data
Size: 55KB - Virtual size: 54KB

.bbs
Size: - Virtual size: 85KB

.idata
Size: 3KB - Virtual size: 3KB

.tls
Size: - Virtual size: 203B

.rdata
Size: 512B - Virtual size: 1KB

.rsrc
Size: 1024B - Virtual size: 516B