428b8aeb7bdc89cff69114f33e9fc19f

General

Target

428b8aeb7bdc89cff69114f33e9fc19f
Size

225KB
MD5

428b8aeb7bdc89cff69114f33e9fc19f
SHA1

5ad35bfa2ee3a781a5147b92b7fa9ddc2239d35c
SHA256

1997da144fb49673786d2e0905405f8258e828127a7394694476d1fb0ba687f5
SHA512

529cc5a52dba466061b09a1b8142312de7b36862eda16e3dfd636e7438fcef044f943f822200ea1e840d094a97588315ce58c3e2203a9fd5b0a0f90d6da4fc89
SSDEEP

6144:7d2N6Q7cNV7IqAFmmPO1mTkZQA1ftHc6fTF:66TXem8HTCQAzNL

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
428b8aeb7bdc89cff69114f33e9fc19f

Files

428b8aeb7bdc89cff69114f33e9fc19f
.exe windows:4 windows x86 arch:x86

7fbd814252eb5ca0ad00334b10375b03

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

CopyFileExW
CreateFileMappingA
CreateMailslotW
DefineDosDeviceW
EnumDateFormatsA
EnumResourceTypesA
ExitProcess
GetCommandLineW
GetCurrencyFormatA
GetDiskFreeSpaceW
GetNumberFormatW
GlobalFindAtomA
HeapReAlloc
InterlockedDecrement
InterlockedExchange
LocalUnlock
Module32First
MoveFileExW
ReadConsoleOutputA
SearchPathW
SetDefaultCommConfigA
SetLocaleInfoW
TlsAlloc
TransmitCommChar
UnhandledExceptionFilter
VirtualProtect
VirtualProtectEx
VirtualQuery
WriteProfileSectionA

user32

CloseWindow
CreateCursor
DdeClientTransaction
DdeCreateDataHandle
ExitWindowsEx
GetCursorPos
GetUpdateRect
GetWindowRgn
GetWindowThreadProcessId
HiliteMenuItem
IsCharUpperW
IsIconic
MessageBoxIndirectW
MoveWindow
PeekMessageA
ReleaseCapture
SetCapture
SetClassWord
SetCursor
SetRectEmpty
ShowCaret
ToUnicode
UnhookWinEvent
UnloadKeyboardLayout

gdi32

AbortPath
BeginPath
CloseFigure
ColorCorrectPalette
CreateDIBPatternBrushPt
CreateRectRgnIndirect
DeleteEnhMetaFile
EnumFontsA
ExtEscape
GdiPlayJournal
GetCharABCWidthsA
GetCharacterPlacementW
GetGraphicsMode
GetMetaRgn
GetSystemPaletteEntries
GetTextColor
PtVisible
ResizePalette
RoundRect
ScaleWindowExtEx
SetGraphicsMode
SetICMProfileA
SetStretchBltMode
SetSystemPaletteUse
SetTextColor
StrokePath
TextOutA

Sections

.text
Size: 512B - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 223KB - Virtual size: 236KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 208KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7fbd814252eb5ca0ad00334b10375b03

Headers

File Characteristics

Imports

kernel32

user32

gdi32

Sections

.text Size: 512B - Virtual size: 12KB

.data Size: 223KB - Virtual size: 236KB

.idata Size: - Virtual size: 8KB

.rsrc Size: 1024B - Virtual size: 208KB

.text
Size: 512B - Virtual size: 12KB

.data
Size: 223KB - Virtual size: 236KB

.idata
Size: - Virtual size: 8KB

.rsrc
Size: 1024B - Virtual size: 208KB