36b62941bbe309ab1248e91ce9e1f569

General

Target

36b62941bbe309ab1248e91ce9e1f569
Size

44KB
MD5

36b62941bbe309ab1248e91ce9e1f569
SHA1

99722afcbfde27b2d7c0af5ec2571b4d183b866e
SHA256

27930867e7bb399b18049a3598441d456d4e2cb8a6cfad13f460833682a8b657
SHA512

bbf0cb2821efddd122f664e7056c0c5bf267ee72add8c877f460769b8fe8a82f8c371ff49157f2e37abca9c2eddb45d0d12eaad0ebfa646c08b3d80f73f0c968
SSDEEP

768:VZSzVu1uN2qzdoI5u2zsOOg6Vo+glJvi6u4xIWku87HXCS1WRm//s1ogScUI/Fin:Vw9N2mo2iolI6uO8HXCSwmn5gSK/Finn

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
36b62941bbe309ab1248e91ce9e1f569

Files

36b62941bbe309ab1248e91ce9e1f569
.exe windows:4 windows x86 arch:x86

0a39074df2ae3bbeeda10239d3bc95c5

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLastError
GetCurrentThreadId
SetupComm
GetHandleInformation
HeapSummary
RegisterWowBaseHandlers
FindNextFileW
GetVolumeInformationW
CreateConsoleScreenBuffer
GetStringTypeExW
GetDateFormatW
SetConsoleLocalEUDC
UnregisterWaitEx
HeapUnlock
CreateNamedPipeW
GetNumberOfConsoleMouseButtons
lstrlen
GetProcessAffinityMask
GetConsoleCursorMode
VirtualProtect
SetConsoleMaximumWindowSize
GetCommConfig
GetConsoleAliasExesLengthW
CreateDirectoryExA
AreFileApisANSI
GlobalFindAtomW
GetLongPathNameA

user32

GetTabbedTextExtentW
GrayStringA
DrawCaption
ChangeDisplaySettingsExW
GetMenuStringA
CopyAcceleratorTableA
TileChildWindows
SetScrollRange
SetTimer
PrivateSetDbgTag
GetPriorityClipboardFormat
SetCursorContents
InvertRect
DefFrameProcW
PrivateExtractIconExA
BeginPaint
DestroyMenu
LoadLocalFonts
CreateCaret
ExcludeUpdateRgn
FreeDDElParam
VTagOutput
SendDlgItemMessageA

gdi32

GetObjectA
PlayMetaFile
GetCharacterPlacementW
GdiEntry5
CreateBitmap
GdiEntry2
PATHOBJ_vEnumStart
StartFormPage
CreatePalette
SetPixelFormat
SetMiterLimit
CreateDIBitmap
GetMiterLimit
cGetTTFFromFOT
GetEnhMetaFileBits
GdiGetLocalFont
GetGlyphOutlineA
EnumFontFamiliesW

comdlg32

dwLBSubclass
Ssync_ANSI_UNICODE_Struct_For_WOW
GetOpenFileNameA
LoadAlterBitmap
CommDlgExtendedError
PrintDlgW
ChooseColorA
dwOKSubclass
PrintDlgExW
GetOpenFileNameW
GetFileTitleA
PrintDlgA
FindTextW
FindTextA
PageSetupDlgA
PrintDlgExA
WantArrows
ReplaceTextA
GetFileTitleW

Sections

.text
Size: 4KB - Virtual size: 40KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 37KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

0a39074df2ae3bbeeda10239d3bc95c5

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

Sections

.text Size: 4KB - Virtual size: 40KB

.data Size: 37KB - Virtual size: 40KB

.idata Size: 2KB - Virtual size: 4KB

.text
Size: 4KB - Virtual size: 40KB

.data
Size: 37KB - Virtual size: 40KB

.idata
Size: 2KB - Virtual size: 4KB