443f1787662457f5d24c20a3cbd21179

General

Target

443f1787662457f5d24c20a3cbd21179
Size

226KB
MD5

443f1787662457f5d24c20a3cbd21179
SHA1

9389a74ed86b96585d4dec487303dea8862ce422
SHA256

c52adf545bcc2992389348cd7c11bc3d9a17e11a20ce1d10da545bd18c64cc6d
SHA512

08a6975767d7866da9418be9a678895aae1c77d1da538e06aadab0ce738142e0aef9104d2d5e9fa952cf413f2bac46c834b16e85c87d9aff273a15d7d88f806d
SSDEEP

6144:mTXnJMay4bHeoPgznC5zQal6OYpoq0LRQetD:mTGa/pqn8MalxYpoHRQU

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
443f1787662457f5d24c20a3cbd21179

Files

443f1787662457f5d24c20a3cbd21179
.exe windows:4 windows x86 arch:x86

d22dbe9283217b98fc56548dc240f953

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

CallNamedPipeW
CommConfigDialogW
CompareStringW
ExitProcess
FlushConsoleInputBuffer
GetCalendarInfoW
GetConsoleMode
GetFileTime
GetOEMCP
GetProcAddress
GlobalFree
Heap32First
HeapReAlloc
LCMapStringW
MoveFileExA
MulDiv
ReadConsoleInputW
SetComputerNameA
SetFilePointer
SetTapePosition
TerminateProcess
TlsGetValue
TlsSetValue
UpdateResourceW
VerLanguageNameA

user32

AppendMenuA
AppendMenuW
BringWindowToTop
ClipCursor
CopyAcceleratorTableA
CreateDialogParamW
DlgDirSelectExA
GetClipboardFormatNameA
GetMenuStringW
GetSystemMenu
GetWindowTextLengthW
InsertMenuItemW
IsCharLowerA
ScreenToClient
SetCapture
SetCursorPos
SetKeyboardState
SetWindowsHookA
VkKeyScanExA
WindowFromDC
wsprintfA

gdi32

AddFontResourceA
Arc
CloseFigure
CreateColorSpaceA
CreateDCA
CreateHalftonePalette
CreateICA
CreatePatternBrush
CreateRoundRectRgn
CreateSolidBrush
EnumFontsA
ExtFloodFill
GetMetaRgn
GetPath
GetPixelFormat
GetTextExtentExPointW
GetTextExtentPointA
GetTextMetricsA
OffsetViewportOrgEx
PolyDraw
RectInRegion
ResetDCA
SetBkColor
SetGraphicsMode
SetMetaRgn
SetMiterLimit
SetPixel
TranslateCharsetInfo

Sections

.text
Size: 512B - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 223KB - Virtual size: 228KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 208KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d22dbe9283217b98fc56548dc240f953

Headers

File Characteristics

Imports

kernel32

user32

gdi32

Sections

.text Size: 512B - Virtual size: 8KB

.data Size: 223KB - Virtual size: 228KB

.rdata Size: - Virtual size: 20KB

.rsrc Size: 1024B - Virtual size: 208KB

.text
Size: 512B - Virtual size: 8KB

.data
Size: 223KB - Virtual size: 228KB

.rdata
Size: - Virtual size: 20KB

.rsrc
Size: 1024B - Virtual size: 208KB