2d87cf713f8fcfd8c73af0f5c805e7fa

General

Target

2d87cf713f8fcfd8c73af0f5c805e7fa
Size

64KB
MD5

2d87cf713f8fcfd8c73af0f5c805e7fa
SHA1

bd890765efd06574cb59948e652008baf75d702a
SHA256

9a349948b821cef5eaab5aed69002d8df70d0e5d823733e6676bf82cbc657ffe
SHA512

0b064911e4d88c75f5588246edb82ff1bd918add7ca9f2f5f8e37848078476d1891ac3bf06df221023d8d2d3661556b04cf80056668233741b3bb24af07ea767
SSDEEP

1536:/PqiP0VvQ11tDjvW58sHLhNIvYjwi3ya:3qicMDjvW8Qt3ya

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2d87cf713f8fcfd8c73af0f5c805e7fa

Files

2d87cf713f8fcfd8c73af0f5c805e7fa
.exe windows:4 windows x86 arch:x86

f23ada4537fe4afd07fbd9f521fc04c5

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadResource
LockResource
WideCharToMultiByte
Sleep
CreateThread
CreateWaitableTimerW
ResumeThread
WritePrivateProfileStringW
SetWaitableTimer
DeleteFileW
FindNextChangeNotification
WaitForSingleObject
GetSystemTime
FileTimeToSystemTime
LoadLibraryA
GlobalLock
CreateEventW
CloseHandle
GetTickCount
GetFileAttributesExW
DuplicateHandle
InterlockedDecrement
FreeResource
GlobalDeleteAtom
MoveFileW
GetProcAddress
FindFirstFileW

user32

CreatePopupMenu
SetDlgItemTextW
RegisterWindowMessageW
RegisterClassExW
GetKeyState
GetWindowThreadProcessId
UpdateWindow
DefWindowProcW
GetSysColor
EnableWindow
PostThreadMessageW
IsDlgButtonChecked
MessageBoxW
GetWindowRect
GetSystemMetrics
SystemParametersInfoW
GetDlgItem
VkKeyScanW

gdi32

GetDeviceCaps
CreateCompatibleDC
SetDIBits
GetMapMode
Rectangle
CreateCompatibleBitmap
SelectObject
BitBlt
SetMapMode

advapi32

SetSecurityDescriptorDacl
RegOpenKeyExW
RegSetValueExW
RegNotifyChangeKeyValue
RegCreateKeyExW

Sections

.text
Size: 52KB - Virtual size: 49KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

f23ada4537fe4afd07fbd9f521fc04c5

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

Sections

.text Size: 52KB - Virtual size: 49KB

.rdata Size: 4KB - Virtual size: 1KB

.data Size: 4KB - Virtual size: 1KB

.text
Size: 52KB - Virtual size: 49KB

.rdata
Size: 4KB - Virtual size: 1KB

.data
Size: 4KB - Virtual size: 1KB