3681d5a1226a6ee51058d88f02b372b5

Sharing

Copy URL Twitter E-mail

General

Target

3681d5a1226a6ee51058d88f02b372b5
Size

280KB
MD5

3681d5a1226a6ee51058d88f02b372b5
SHA1

ec152a7a440db99b23f31bf7d8927419ec60061d
SHA256

cb75b293dcdd7a3c25f2d808b0437ef557eea6426b8919ea5c0bda6b82ea8f25
SHA512

4e165ff8505106b7d461ebd46b006fc322028f4c154dac01253d9616e038354ba2c8ca2bbf11db4cc9b0181c74e28bd5ea3bab6dde68e1011cb6d09d04e52036
SSDEEP

6144:oj3XfPVIfPk9GIgyW4gGOQDBJIF2H924XnG:obXftIfcEXVEw2dx

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3681d5a1226a6ee51058d88f02b372b5

Files

3681d5a1226a6ee51058d88f02b372b5
.exe windows:4 windows x86 arch:x86

42d35653144633c8bac2ad77e44ad9fd

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

CloseWindow
AppendMenuA
IsWindow
DrawIconEx
CopyImage
GetWindowTextLengthA
CopyIcon
GetCursor
CreateIcon
DrawTextW
AlignRects
InsertMenuA
GetDC
DialogBoxParamA
AppendMenuW
IsMenu
GetFocus
DrawIcon
GetWindowTextA
GetCursor
GetDC
GetWindowTextLengthA
LoadCursorA
LoadMenuA
CreateIcon
DrawTextW
AppendMenuA
DrawIconEx
CopyIcon
CloseWindow
GetMenu
InsertMenuA
IsMenu
AlignRects
GetFocus
AppendMenuW
GetDlgItem
EndDialog

kernel32

GlobalFree
GetCommState
GetCommProperties
GetConsoleOutputCP
FindNextFileW
GetCommandLineA
DeleteFileW
GetStdHandle
GetConsoleTitleW
GetCommMask
GetCommTimeouts
FreeConsole
GetCommModemStatus
GetFileSize
GetConsoleCP
GetCommMask
GetACP
GetVersion
GetCompressedFileSizeW
GetCommState
GetCommModemStatus
GetCommandLineA
DeleteFileW
GetLastError
GetCompressedFileSizeA
GetOEMCP
GetStdHandle
GetFileSize
DeleteFileA
GetFileTime
GetCommandLineA
GetProcessHeap
GetOEMCP
GetCommandLineA
GetConsoleTitleA
DeleteFileW
GetLastError
GetCommProperties
GetCommState
GetCommTimeouts
GetProcessHeap
GetCommMask
GetLastError
GetConsoleOutputCP
GetCompressedFileSizeA
FindNextFileW
GetConsoleMode
GetCommModemStatus
FreeConsole
DeleteFileA
GetCommTimeouts
GetLastError
GetCommandLineA
GetCommandLineA
GetConsoleCP
GetFileTime
GetCommModemStatus
GetCommProperties
FindNextFileW
GetCompressedFileSizeW
GlobalFree
GetProcessHeap
GetConsoleTitleW
GetStdHandle
GetStdHandle
GetCompressedFileSizeA
GetLastError
GetCommState
GetConsoleMode
DeleteFileA
GetProcessHeap
FreeConsole
GetConsoleTitleA
GetACP
GetCompressedFileSizeW
GetCommMask
GetFileSize

advapi32

RegCreateKeyExA
RegDeleteKeyW
RegEnumKeyW
RegDeleteKeyA
RegGetKeySecurity
RegQueryValueExW
RegQueryInfoKeyW
RegEnumKeyExW
RegOpenKeyExA
RegQueryValueW
RegCreateKeyW
RegEnumValueW
RegReplaceKeyW
RegFlushKey
RegQueryValueA
RegQueryValueExA
RegEnumKeyExA
RegEnumValueA

Sections

.text
Size: 30KB - Virtual size: 30KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.init
Size: 236KB - Virtual size: 611KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

42d35653144633c8bac2ad77e44ad9fd

Headers

File Characteristics

Imports

user32

kernel32

advapi32

Sections

.text Size: 30KB - Virtual size: 30KB

.rdata Size: 8KB - Virtual size: 8KB

.init Size: 236KB - Virtual size: 611KB

.idata Size: 4KB - Virtual size: 4KB

.text
Size: 30KB - Virtual size: 30KB

.rdata
Size: 8KB - Virtual size: 8KB

.init
Size: 236KB - Virtual size: 611KB

.idata
Size: 4KB - Virtual size: 4KB