27a70a16845142bc08767b687e6e298c

General

Target

27a70a16845142bc08767b687e6e298c
Size

123KB
MD5

27a70a16845142bc08767b687e6e298c
SHA1

50243c9a8e0bd27ee8c7b870f68a752aceae55f1
SHA256

bdc218af71078c38c3b476c7b12654b8db54a63e9ceb0118b925ec773c1f4833
SHA512

c3af0ce4d3568f994e8af1f9c4c93bdc91e3eff7e1b7d2c8596c3965d02d3c3a52397dd0f2cd2b93a62fbaa0a47d9fd278c0e4c18ffd93aebffbc25b64c591f0
SSDEEP

3072:kn5LgL9BnEo5RKCUhidhynztg1VHgbAt23iFO0JltuH+J5q:rCCUhuA+VVtGiFO0pk

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
27a70a16845142bc08767b687e6e298c

Files

27a70a16845142bc08767b687e6e298c
.exe windows:5 windows x86 arch:x86

386318b4241dd19fe7c2cae167df7879

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comdlg32

GetOpenFileNameA
PrintDlgA

user32

GetDesktopWindow
GetForegroundWindow
GetClassLongW
GetScrollRange
PostMessageW
GetDlgItemInt
GetMenuItemCount
GetScrollPos
DeleteMenu
DestroyIcon
DeferWindowPos
LoadIconW
CharUpperW
GetMenu
GetClassInfoW

rpcrt4

NdrClientCall2
RpcStringBindingComposeA
RpcBindingFromStringBindingA
RpcBindingFree

kernel32

GetLastError
lstrlenA
CreateProcessW
GlobalFree
GetUserDefaultLCID
CopyFileW
CloseHandle
WaitForSingleObject
FindClose
GlobalAlloc
SetLastError
HeapAlloc
HeapReAlloc
WideCharToMultiByte
GetFileAttributesA
MulDiv
CreateEventW
GetShortPathNameW
FindFirstFileW
FindNextFileW
ResetEvent
HeapFree
Sleep
GetFileAttributesW
VirtualAlloc
GetVersionExW
GetProcessHeap
GetFullPathNameW

crypt32

CryptUnregisterOIDInfo

msvcrt

__doserrno

ws2_32

WSAGetLastError

Sections

.text
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 224KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 99KB - Virtual size: 98KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

386318b4241dd19fe7c2cae167df7879

Headers

DLL Characteristics

File Characteristics

Imports

comdlg32

user32

rpcrt4

kernel32

crypt32

msvcrt

ws2_32

Sections

.text Size: 5KB - Virtual size: 4KB

.rsrc Size: 16KB - Virtual size: 16KB

.data Size: 1KB - Virtual size: 224KB

.rdata Size: 99KB - Virtual size: 98KB

.text
Size: 5KB - Virtual size: 4KB

.rsrc
Size: 16KB - Virtual size: 16KB

.data
Size: 1KB - Virtual size: 224KB

.rdata
Size: 99KB - Virtual size: 98KB