415b81ec7b8684d533bd9e30c5c19875

General

Target

415b81ec7b8684d533bd9e30c5c19875
Size

213KB
MD5

415b81ec7b8684d533bd9e30c5c19875
SHA1

c447c34cd7ec7efa2fe97e5a688cc205c484dd92
SHA256

202a379fb9ed3981069a7f0e5bedf65eeeec39b533392a5e7d988a7b498dcb80
SHA512

c0f13e0c8f2b929ec905717c2a15b0fd3e48f22c45ab5d5a33846c7765d1430fbe6ef635acdc8aaf6964a8a43b74674d112b9298abb99b05e1b5c7f3370b972c
SSDEEP

6144:e3Y2qN9CDIr2kIkvinSURhzYVZsqad5ngBiz:eI7/Cw2liinSUbzYK9gBa

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
415b81ec7b8684d533bd9e30c5c19875

Files

415b81ec7b8684d533bd9e30c5c19875
.exe windows:4 windows x86 arch:x86

e74e2acd1a35558fc39173a5c7f1f2ae

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

EqualRect
GetLastActivePopup
OpenIcon
ActivateKeyboardLayout
PostMessageA
CharUpperA
RegisterWindowMessageA
GetTopWindow
wsprintfA
SetWindowTextA
IsWindowEnabled
GetPropA
ScreenToClient
WaitMessage
GetScrollPos
MessageBoxA
DefMDIChildProcA
GetDesktopWindow
SendMessageW
GetMenuState
GetWindowLongW
OpenClipboard
CallNextHookEx
UnregisterClassA
SetWindowPos
GetForegroundWindow
OffsetRect
GetMenu
IsRectEmpty
ShowWindow
IsWindowVisible
GetActiveWindow
GetSysColor
DestroyCursor
SetFocus
SetScrollInfo
EndDialog
MsgWaitForMultipleObjects
EndPaint
RedrawWindow
DrawTextA
GetCapture
CreateIcon
GetWindowDC
AdjustWindowRectEx
GetWindowRect
BeginPaint
SetForegroundWindow
GetSysColorBrush
DispatchMessageW
LoadKeyboardLayoutA
CharNextW
EnumWindows
ShowOwnedPopups
GetClientRect
FrameRect
ChildWindowFromPoint
GetSubMenu
InvalidateRect
CharNextA
IsDlgButtonChecked
DrawEdge
IntersectRect

kernel32

SetThreadLocale
VirtualAlloc
VirtualQuery
VirtualAllocEx
LoadLibraryA
GetOEMCP

Exports

Exports

BVPxzU7Qlv7iZy@4
_H0YlMWW@16
_skpcnsjsv@24
xpMJ_CsGZ
1XfOLb2
_B5xcZClfN
4gG1EJh347Hgk@20
_Ap_F4Y2OmYB

Sections

.text
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 192KB - Virtual size: 192KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e74e2acd1a35558fc39173a5c7f1f2ae

Headers

File Characteristics

Imports

user32

kernel32

Exports

Exports

Sections

.text Size: 12KB - Virtual size: 11KB

.rdata Size: 3KB - Virtual size: 2KB

.data Size: 192KB - Virtual size: 192KB

.rsrc Size: 5KB - Virtual size: 4KB

.text
Size: 12KB - Virtual size: 11KB

.rdata
Size: 3KB - Virtual size: 2KB

.data
Size: 192KB - Virtual size: 192KB

.rsrc
Size: 5KB - Virtual size: 4KB