38e9fad08746df2d056d3425c3ae8f8e

General

Target

38e9fad08746df2d056d3425c3ae8f8e
Size

81KB
MD5

38e9fad08746df2d056d3425c3ae8f8e
SHA1

586e9fd85495b2e8d378b6e872815631aaf6975f
SHA256

350e6842a6b60e6bf211e5297b63a93e888acc97ccc23895e95ea875fb37cb0d
SHA512

c0430ba45b0d562969ab8112ca607ef6048fbdb26eba71c773751598952f2304014110c7b404baeb8ba31f2252d9a297e194884c6f60ce3cb1247ac4a285cac2
SSDEEP

1536:qU/d/OHxEyCtYrttbaAMB/v5yFDu+m/EmFrr:bOHJCt+elB/v5O2EmFf

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
38e9fad08746df2d056d3425c3ae8f8e

Files

38e9fad08746df2d056d3425c3ae8f8e
.exe windows:5 windows x86 arch:x86

ae8b8c74d9fd8c81d9e07c1f80605ac7

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

IsCharAlphaW
CheckMenuItem
GetMenu
InSendMessage
GetCaretPos
FindWindowW
PostMessageW
MessageBoxExA
GetMessageTime
GetCaretBlinkTime
DestroyMenu
mouse_event
AdjustWindowRect

comctl32

ImageList_AddMasked
PropertySheetA
ImageList_GetIconSize
ImageList_ReplaceIcon

kernel32

ReleaseSemaphore
GetModuleHandleA
CreateFileMappingW
FreeResource
CompareStringA
SetErrorMode
SetConsoleCP
GetExitCodeProcess
ResetEvent
GetStringTypeA
GetComputerNameExW
GetOEMCP
lstrlenA
TransactNamedPipe

gdi32

CreateRectRgn
SetViewportExtEx
SetROP2
ExtTextOutW
GetDIBColorTable
GetObjectW
DeleteObject
GetStockObject
GetDIBits
Ellipse

comdlg32

CommDlgExtendedError
PageSetupDlgW
GetSaveFileNameW
FindTextW

shlwapi

PathFindFileNameW
PathBuildRootW
StrCatW

Exports

Exports

_Htximhyp_cenqexuo
_KhiwYnwu_nwnyGA
_OLopvaqq_wiLryt
_Cvsqaifn_pjulaZ
_Mgcqabgl_oMdFfrOB
_PmkKjzRn_liEannclp
_NxMcZhjh_kyceesi_gnyv

Sections

.text
Size: 63KB - Virtual size: 63KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.tlc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 9KB - Virtual size: 81KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ae8b8c74d9fd8c81d9e07c1f80605ac7

Headers

File Characteristics

Imports

user32

comctl32

kernel32

gdi32

comdlg32

shlwapi

Exports

Exports

Sections

.text Size: 63KB - Virtual size: 63KB

.tlc Size: 2KB - Virtual size: 2KB

.data Size: 9KB - Virtual size: 81KB

.rsrc Size: 3KB - Virtual size: 2KB

.reloc Size: 3KB - Virtual size: 3KB

.text
Size: 63KB - Virtual size: 63KB

.tlc
Size: 2KB - Virtual size: 2KB

.data
Size: 9KB - Virtual size: 81KB

.rsrc
Size: 3KB - Virtual size: 2KB

.reloc
Size: 3KB - Virtual size: 3KB