3abb65a9eead232c59d29bb7e82bbacc

Sharing

Copy URL

Twitter E-mail

General

Target

3abb65a9eead232c59d29bb7e82bbacc
Size

56KB
MD5

3abb65a9eead232c59d29bb7e82bbacc
SHA1

06413c8ba05e4f23b0aa49350b23d3d9107fb355
SHA256

5057d33e3cf9a536a6e91b78820cc8f60d00f5df03cc4834f3a8fd1508f4a263
SHA512

5479fd54c7445bf716548b1dc68b3dd9cdd7d18910f1b3fb137e13d5a3b9e053cbd3dbfd1f15e350cdd11f577ecdffd9d9501d9c7bbf7025a33f6539aebb5d77
SSDEEP

1536:01Sqvf8eVUXLUn2PeeCNFtuwLpkaCZQ13z8:0I8f8eVqU3tR235

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3abb65a9eead232c59d29bb7e82bbacc

Files

3abb65a9eead232c59d29bb7e82bbacc
.exe windows:5 windows x86 arch:x86

20f0ff78a3b79f04b4638e23ff5110ad

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

MsgWaitForMultipleObjects
ToUnicode
SetThreadDesktop
SendMessageW
ExitWindowsEx
FindWindowExW
GetClipboardData
GetWindowThreadProcessId
GetCursorPos
OpenWindowStationA
PeekMessageA
SetProcessWindowStation
GetDlgItemTextW
GetDlgItemTextA
LoadCursorW
EndDialog
CloseWindowStation
GetWindowLongW
CloseDesktop
GetDlgItem
GetWindowTextW
GetMessageW
GetClassNameW
GetKeyState
PeekMessageW
GetForegroundWindow
DispatchMessageW
GetIconInfo
GetKeyboardState
GetMessageA
DrawIcon
OpenDesktopA
CharLowerBuffA

kernel32

WriteProcessMemory
ReadFile
GetCurrentProcessId
UnmapViewOfFile
GetUserDefaultUILanguage
SetFileTime
FindClose
DisconnectNamedPipe
GetSystemTimeAsFileTime
GetExitCodeProcess
GetThreadPriority
CreateFileW
IsBadReadPtr
GetTempPathW
GetVersionExW
HeapAlloc
GetFileTime
SetThreadPriority
MultiByteToWideChar
GetProcessHeap
GetProcessTimes
GetTempFileNameW
WaitForSingleObject
ExpandEnvironmentStringsW
MoveFileExW
GetLocalTime
GlobalLock
GetCommandLineA
OpenProcess
HeapReAlloc
GetSystemTime
GlobalUnlock
Sleep
lstrcmpiW
GetModuleFileNameW
GetModuleHandleA
ResetEvent
lstrcpynW
GetModuleFileNameA
CloseHandle
CreateDirectoryW
FlushFileBuffers
SystemTimeToFileTime
lstrcpyA
CreateProcessW
lstrcatW
GetLogicalDrives
SetLastError
SetEndOfFile
GetComputerNameW
OpenMutexW
lstrcatA
lstrcpyW
SetEvent
ReleaseMutex
GetTimeZoneInformation
GetFileSize

Sections

.dwtkb
Size: 19KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.lut
Size: 5KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rkr
Size: 1024B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.lcxwf
Size: 27KB - Virtual size: 132KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

20f0ff78a3b79f04b4638e23ff5110ad

Headers

File Characteristics

Imports

user32

kernel32

Sections

.dwtkb Size: 19KB - Virtual size: 39KB

.lut Size: 5KB - Virtual size: 10KB

.rkr Size: 1024B - Virtual size: 1KB

.lcxwf Size: 27KB - Virtual size: 132KB

.rsrc Size: 2KB - Virtual size: 4KB

.dwtkb
Size: 19KB - Virtual size: 39KB

.lut
Size: 5KB - Virtual size: 10KB

.rkr
Size: 1024B - Virtual size: 1KB

.lcxwf
Size: 27KB - Virtual size: 132KB

.rsrc
Size: 2KB - Virtual size: 4KB