245df5cabdee4a254bf60a13f4253f58

General

Target

245df5cabdee4a254bf60a13f4253f58
Size

17KB
MD5

245df5cabdee4a254bf60a13f4253f58
SHA1

cbb44ffb0357db68ad276db829cfd750533451a8
SHA256

7d3414a5b54b88b43b8f7b6d475ddc9a320b76f2ecbded01afae4d308e6cc645
SHA512

b0d9e84603c4eae5bea717732606c07bb964aac5110d719caf8c25e3c35ff618cc8281112757a344c6d8d36d3ec9c102ee84b371b694234879ebf2863ebadb49
SSDEEP

384:delQiNzJ6FUsFXF8vTDioN9px2M8wlo1ismpA1TcO/qlatbdC9:q7zJ6FjNeTeo/px2M8Dis76OSlCd

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
245df5cabdee4a254bf60a13f4253f58

Files

245df5cabdee4a254bf60a13f4253f58
.exe windows:4 windows x86 arch:x86

c14083c68cfa3630b574886d41e55cff

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ws2_32

WSAStartup
accept
socket
recv
send
WSACleanup
connect

user32

SetWindowLongA
GetWindowLongA
MessageBoxA
InvalidateRect
DefWindowProcA
GetDC
UpdateWindow
KillTimer
SetWindowPos
EnableWindow

kernel32

HeapAlloc
GetCurrentProcess
GetProcessHeap
GetLastError
VirtualFree
FindResourceA
VirtualAlloc
VirtualProtect
LoadResource
CreateDirectoryW

ole32

CoInitializeEx
CoTaskMemFree
OleGetClipboard
CreateStreamOnHGlobal
CoCreateInstance
CoGetCancelObject
CoUninitialize
CoTaskMemAlloc
OleIsCurrentClipboard
CoSetProxyBlanket

Sections

.textbss
Size: - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.debug
Size: 512B - Virtual size: 363B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 512B - Virtual size: 413B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 176B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c14083c68cfa3630b574886d41e55cff

Headers

File Characteristics

Imports

ws2_32

user32

kernel32

ole32

Sections

.textbss Size: - Virtual size: 12KB

.idata Size: 6KB - Virtual size: 6KB

.debug Size: 512B - Virtual size: 363B

.text Size: 512B - Virtual size: 413B

.data Size: 512B - Virtual size: 176B

.rsrc Size: 2KB - Virtual size: 2KB

.rdata Size: 6KB - Virtual size: 5KB

.textbss
Size: - Virtual size: 12KB

.idata
Size: 6KB - Virtual size: 6KB

.debug
Size: 512B - Virtual size: 363B

.text
Size: 512B - Virtual size: 413B

.data
Size: 512B - Virtual size: 176B

.rsrc
Size: 2KB - Virtual size: 2KB

.rdata
Size: 6KB - Virtual size: 5KB