26b9ced6bad6c97d1b6f1a0c1fd8d05e

General

Target

26b9ced6bad6c97d1b6f1a0c1fd8d05e
Size

60KB
MD5

26b9ced6bad6c97d1b6f1a0c1fd8d05e
SHA1

8d03360605178352aaaad64c8a9a1eb18b2b05d8
SHA256

a4c94acfdc8e7ebbd90435e469f483049f5a9253792b19109101cee00d81213b
SHA512

f8d6acb0471dd2cd2a9835480c2fee2ad8da846d5b838d8406beac6693e3db661b6a11c527c7257db851883d2c0ace2cab9bbe8798515ce88ad741a5fcb51dfe
SSDEEP

1536:CyJlgOumzyrGwHUYrCxf+eAjpFG3LfNnx3vjcoNXrIL5cGk6SX9SMTz:/I1rHUYrCxf+eO7ULfXg87Ci5ltbz

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
26b9ced6bad6c97d1b6f1a0c1fd8d05e

Files

26b9ced6bad6c97d1b6f1a0c1fd8d05e
.exe windows:5 windows x86 arch:x86

6338b87e153971a6bb5e5313885205bc

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

shlwapi

StrCmpNIA

user32

DestroyMenu
RegisterClassExA
FindWindowW
DrawFocusRect
CharLowerA
DrawMenuBar
IsCharAlphaA
LoadBitmapA
GetUserObjectInformationW
SendInput
MapVirtualKeyA
FrameRect
PostThreadMessageA
GetWindowRect

gdi32

CreateBitmap
RestoreDC
CreatePatternBrush
SetTextAlign
SetMagicColors
GetClipBox
CreatePalette

comdlg32

PrintDlgExW
GetSaveFileNameW
GetOpenFileNameW

kernel32

CompareStringA
GlobalAlloc
SetThreadPriority
GlobalLock
RaiseException
ReleaseMutex
CreateFileMappingW
GetWindowsDirectoryA
GetUserDefaultUILanguage
CmdBatNotification
FindFirstFileA
FormatMessageA
SetThreadAffinityMask
HeapSize

Exports

Exports

?ZmkoMtxibqvm@@YGXFJ@Z
?Woqndvclpwn@@YGEPAHE@Z
?CgxgtewChtpNr@@YGGKM@Z
?NbntyczwgkPFjlSyc@@YGKE@Z
?Nlxyxpaneqowpxgyic@@YGXJI@Z

Sections

.itext
Size: 27KB - Virtual size: 27KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.text
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 19KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6338b87e153971a6bb5e5313885205bc

Headers

File Characteristics

Imports

shlwapi

user32

gdi32

comdlg32

kernel32

Exports

Exports

Sections

.itext Size: 27KB - Virtual size: 27KB

.text Size: 5KB - Virtual size: 5KB

.data Size: 4KB - Virtual size: 4KB

.rsrc Size: 19KB - Virtual size: 19KB

.reloc Size: 2KB - Virtual size: 1KB

.itext
Size: 27KB - Virtual size: 27KB

.text
Size: 5KB - Virtual size: 5KB

.data
Size: 4KB - Virtual size: 4KB

.rsrc
Size: 19KB - Virtual size: 19KB

.reloc
Size: 2KB - Virtual size: 1KB