3d287655340005c10d31540dbf696a80

General

Target

3d287655340005c10d31540dbf696a80
Size

70KB
MD5

3d287655340005c10d31540dbf696a80
SHA1

ed8043b08cacc435b00bb2243240803322f51d11
SHA256

b8c7073d4260ec4afec433a98eb32dbbe5dfafe5ed8d949e35fcb9315c59c8cf
SHA512

845246f4dfc20f6a08e0d37028e16cba26c5cead9502072188d880ac276e4e038041d6549d478e57ff0585e68aaabe36fd22acdb238893fd0ff40d33e56da68e
SSDEEP

1536:dO1Iw+S2fDKZ/RAlmbK+/BmrEEWtXlG6T2:012mZ/RAge+/BmIBRlG6T

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3d287655340005c10d31540dbf696a80

Files

3d287655340005c10d31540dbf696a80
.exe windows:4 windows x86 arch:x86

cfb940862d4fe2da2fd29303e55a5960

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

InsertMenuA
LoadCursorA
EndDialog
CopyImage
GetDlgItem
GetMenu
GetWindowTextLengthA
GetWindowTextA
LoadMenuA
DrawTextW
CopyRect
DialogBoxParamA
IsWindow
DrawIconEx
GetCursor
GetDC
DrawIcon
CopyIcon
CreateIcon
CloseWindow
IsMenu
DialogBoxParamW

kernel32

lstrcpyA
GetStringTypeA
GetCommandLineA
GetFileType
GetStdHandle
GetOEMCP
lstrcpynW
GetCurrentProcess
LCMapStringA
MultiByteToWideChar
SetHandleCount
CreateFileA
GetCPInfo
GetVersion
GetACP
lstrcatA
WriteFile
LCMapStringW
GetStringTypeW
lstrcpynA
GetStartupInfoA

comctl32

ImageList_LoadImageW
CreateStatusWindow
ImageList_DragEnter
ImageList_EndDrag
ImageList_GetIcon
ImageList_Add
ImageList_Create
ImageList_DrawEx
ImageList_Copy
DrawStatusText

advapi32

RegDeleteValueA
RegEnumKeyExA
RegQueryValueA
RegDeleteKeyW
RegEnumValueA
RegQueryValueW
RegEnumKeyW
RegEnumKeyA
RegDeleteValueW
RegOpenKeyExW
RegOpenKeyA
RegQueryValueExA
RegCreateKeyExW

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 51KB - Virtual size: 1.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 228B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 15KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

cfb940862d4fe2da2fd29303e55a5960

Headers

File Characteristics

Imports

user32

kernel32

comctl32

advapi32

Sections

.text Size: 2KB - Virtual size: 2KB

.rdata Size: 51KB - Virtual size: 1.4MB

.data Size: 512B - Virtual size: 228B

.rsrc Size: 15KB - Virtual size: 14KB

.text
Size: 2KB - Virtual size: 2KB

.rdata
Size: 51KB - Virtual size: 1.4MB

.data
Size: 512B - Virtual size: 228B

.rsrc
Size: 15KB - Virtual size: 14KB