37b41d54fdf5c1289aaec3e670632ffb

General

Target

37b41d54fdf5c1289aaec3e670632ffb
Size

43KB
MD5

37b41d54fdf5c1289aaec3e670632ffb
SHA1

4a58a5e73cf870be61c199a8a296355c409df8ed
SHA256

4fd0b7c18fb3f032b75c16e1ea367a6098ceb3d0a29071ad4e1163854f987a56
SHA512

61fafbf0e297c0841ff3c86972e372c59d45d41cfa548f19ea3b1371eb8181a50d24f17784ecd199f7178d8b66c9afaac79263cb32a8798367f8fa7e0d507b46
SSDEEP

768:+hKSe2AjQRrEcyuzyZYnj3aamd9s/ufAIquh8JOKGnyN1Y0Evsj5PXA8nfwtFlXt:+hKSe2AjeQcfeZYnjaamd9s/uoIq28Jq

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
37b41d54fdf5c1289aaec3e670632ffb

Files

37b41d54fdf5c1289aaec3e670632ffb
.exe windows:1 windows x86 arch:x86

fbbbb69a85c41dce524824176038df97

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetVersionExA
GetACP
DeleteFileA
GetStdHandle
GlobalUnlock
FileTimeToLocalFileTime
WriteFile
EnterCriticalSection
ExitThread
LoadLibraryA
TerminateThread
GetCurrentProcess
GlobalMemoryStatus
GetModuleHandleA
GetStartupInfoA
GetDateFormatA
GetLocaleInfoW
ResumeThread

user32

SetForegroundWindow
LoadMenuA
EnableMenuItem
CreateMenu
GetSysColorBrush
SetCursor
ShowWindow
ShowWindowAsync
DeleteMenu
CheckRadioButton
TranslateAcceleratorA
MessageBoxA
SetWindowLongA
InflateRect
GetClassNameA
SendMessageTimeoutA
UnionRect
GetClientRect
GetMessageA
InvalidateRect
TranslateMessage
RemoveMenu
DialogBoxIndirectParamA

msvcrt

_findfirst
__set_app_type
_safe_fdiv
_wunlink
_strnicoll
_ismbcl0
_wspawnvpe
__setusermatherr
_initterm
_endthreadex
iswlower
clock
_unlink
_wremove
memcpy
__p__fmode
scanf
__getmainargs
_cgetws
_wspawnvp
_wspawnve
_itoa
exit
_adjust_fdiv
__p__commode
_acmdln
_mbsnbcmp
_except_handler3
_ismbbkprint
_ismbchira
_getpid
_exit
_controlfp
_XcptFilter
_wcsncoll

gdi32

SetTextAlign
StartPage
CreateFontIndirectA
SaveDC
Polyline
CreatePen
RectInRegion
LineTo
GetObjectA
GetTextMetricsA
CreateRectRgn
SetMapMode
SetBkMode
ExtTextOutA
SetROP2
DeleteObject
StartDocA

Sections

.text
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

fbbbb69a85c41dce524824176038df97

Headers

File Characteristics

Imports

kernel32

user32

msvcrt

gdi32

Sections

.text Size: 28KB - Virtual size: 27KB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 2KB - Virtual size: 2KB

.rsrc Size: 9KB - Virtual size: 8KB

.text
Size: 28KB - Virtual size: 27KB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 2KB - Virtual size: 2KB

.rsrc
Size: 9KB - Virtual size: 8KB