430340107f6ecb06dfee9ed37ef8e488

General

Target

430340107f6ecb06dfee9ed37ef8e488
Size

56KB
MD5

430340107f6ecb06dfee9ed37ef8e488
SHA1

175e4b5c0ccc5f38168cd7fd88666ba83af47a94
SHA256

545c54da8bdb77e19b1e77df71c969e36a0611e1da312707e0036be12d4899fa
SHA512

c613b4d4a4ac1db39a61cbcc3ef58a92eb4e08120b0552ad3d382b895f34765f0987711e808509d1e95fcb36e2806db6eb5c3cccecce2114238069a7e57a074e
SSDEEP

1536:WEsqtFJsJBlVK0fS9kUi6nhXNGl60BKA:bTWJBrk9kJ6nhXNMHBKA

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
430340107f6ecb06dfee9ed37ef8e488

Files

430340107f6ecb06dfee9ed37ef8e488
.exe windows:4 windows x86 arch:x86

03c34d36235e5d8a373b22634cf1c3d3

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetTickCount
CancelWaitableTimer
GetLocalTime
ReadProcessMemory
FindFirstFileW
GetCurrentProcessId
FindNextChangeNotification
lstrlenW
LoadLibraryW
GlobalAddAtomW
GetDriveTypeW
DuplicateHandle
GetSystemTime
ReadFile
GetProcAddress
LoadResource
MoveFileW
SetEvent
CreateEventW
LoadLibraryA
CreateWaitableTimerW
GetFileAttributesExW
FindResourceW
WriteFile
GetCurrentThreadId
FileTimeToSystemTime
SuspendThread
GlobalAlloc
GlobalUnlock
WaitForMultipleObjects
GlobalFree

user32

LoadCursorW
AppendMenuW
CreateWindowExW
LoadBitmapW
SetCapture
EndDialog
MessageBoxW
WindowFromPoint
TranslateMessage
SetWindowPos
GetMessageW
RegisterWindowMessageW
IsDlgButtonChecked
SetCursorPos
SystemParametersInfoW
LoadStringW
LoadImageW

gdi32

StretchBlt
Rectangle
SelectObject
BitBlt
GetStockObject
CreateCompatibleBitmap
SetDIBits
CreatePen
GetDeviceCaps
CreateDCW
DeleteDC

advapi32

InitializeSecurityDescriptor
LookupAccountSidW
StartServiceW
SetSecurityDescriptorDacl

Sections

.text
Size: 44KB - Virtual size: 40KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

03c34d36235e5d8a373b22634cf1c3d3

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

Sections

.text Size: 44KB - Virtual size: 40KB

.rdata Size: 4KB - Virtual size: 1KB

.data Size: 4KB - Virtual size: 1KB

.text
Size: 44KB - Virtual size: 40KB

.rdata
Size: 4KB - Virtual size: 1KB

.data
Size: 4KB - Virtual size: 1KB