38540907d611a83a6eb432a3fc22b2f6

Sharing

Copy URL Twitter E-mail

General

Target

38540907d611a83a6eb432a3fc22b2f6
Size

41KB
MD5

38540907d611a83a6eb432a3fc22b2f6
SHA1

a3ea81d2b74fe55ba4a2d52eee3209a456fb32d3
SHA256

c784e88e77f867f0668d98e0f3ed9f374640889a62ea43a9ee3c02223a67334f
SHA512

4b2bbe6213aaf742f83ac8e648c9f09e73ce0f737194460584f193ba640de758b2440ef74d7eeaca42ba28b7ecd7c918182ed636edf3f94b7364c7909afb6d93
SSDEEP

768:tY+qthILR/Tgjm480veosOl226s0UFk5BeWKN72xFw:m+qthINrgjm4heoTM26sFgP82xFw

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
38540907d611a83a6eb432a3fc22b2f6

Files

38540907d611a83a6eb432a3fc22b2f6
.exe windows:4 windows x86 arch:x86

08d37d0bc41a0cd2c17d902be97f8eef

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateIoCompletionPort
VirtualProtect
EnumUILanguagesW
CreateRemoteThread
SetHandleCount
GetProcessAffinityMask
OpenSemaphoreW
GetComputerNameA
VerifyConsoleIoHandle
CreateHardLinkW
DeviceIoControl
GetProfileSectionW
SetTapePosition
IsBadReadPtr
GetNumberOfConsoleFonts
DebugActiveProcess
GetCurrentDirectoryA
SetEvent
CopyFileExA
OpenProfileUserMapping
GetLastError
lstrcpynW
FindFirstVolumeA
ReadConsoleOutputCharacterW
WriteFileGather
WritePrivateProfileStringA
GetProfileStringW
GetConsoleCommandHistoryLengthW
GetCommandLineW
FreeUserPhysicalPages
ReadDirectoryChangesW
WriteProfileStringA
InitializeCriticalSection
RaiseException

user32

CreateDesktopW
AllowSetForegroundWindow
WinHelpA
SetCursor
Win32PoolAllocationStats
FreeDDElParam
LoadCursorA
ShowScrollBar
OpenWindowStationW
ToAsciiEx
BlockInput
DdeInitializeW
DdeUninitialize
DdeConnect
GetMenuItemInfoW
InsertMenuItemW
GetMonitorInfoW
DrawIconEx
DeviceEventWorker
UserRealizePalette
DrawTextW
GetLastInputInfo
ChangeClipboardChain
BeginPaint
TrackMouseEvent
IsWindowEnabled
DeleteMenu
SendMessageCallbackW
keybd_event
SendMessageW
RegisterClassExW
GetKeyboardType
DrawFocusRect

gdi32

EngQueryEMFInfo
SetLayout
GetWorldTransform
MirrorRgn
ExtEscape
CreatePen
PlgBlt
CreateSolidBrush
GetICMProfileA
ColorMatchToTarget
SetMetaRgn
FONTOBJ_vGetInfo
GdiCreateLocalEnhMetaFile
ExcludeClipRect
OffsetViewportOrgEx

comdlg32

CommDlgExtendedError
PrintDlgA
GetSaveFileNameW
PrintDlgExW
ChooseFontA
ReplaceTextA
GetOpenFileNameW
GetFileTitleW
ChooseColorA
dwLBSubclass
PageSetupDlgA
Ssync_ANSI_UNICODE_Struct_For_WOW

Sections

.text
Size: 4KB - Virtual size: 40KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 32KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

08d37d0bc41a0cd2c17d902be97f8eef

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

Sections

.text Size: 4KB - Virtual size: 40KB

.data Size: 32KB - Virtual size: 36KB

.idata Size: 3KB - Virtual size: 4KB

.text
Size: 4KB - Virtual size: 40KB

.data
Size: 32KB - Virtual size: 36KB

.idata
Size: 3KB - Virtual size: 4KB