46610c80e663256c0c17d04bfe5910a0

Sharing

Copy URL Twitter E-mail

General

Target

46610c80e663256c0c17d04bfe5910a0
Size

84KB
MD5

46610c80e663256c0c17d04bfe5910a0
SHA1

80b1f9a046de382d463db8d786eb84106e9f8f4d
SHA256

fd5ea1ffdca03ea6a4d29645e4042b35a8675f8c5528763f149a18e60d0cfed8
SHA512

07aa050fea1bae4c01b4fb2dd276d38ac0fdff332572f9f7ac21e44fcbd679b93c3e9453e7dc1fccde55f9a1517b1b65ee4b8bd35b3589dd8d35a404dbe8bebd
SSDEEP

1536:VCHuTecjKdBgmPhIjDtVyxVRAOvURiNnF4fWv/N:wgayjZoli4NvV

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
46610c80e663256c0c17d04bfe5910a0

Files

46610c80e663256c0c17d04bfe5910a0
.exe windows:4 windows x86 arch:x86

7b7448d912e9fc3868caf843bb1c246a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegEnumKeyW
RegLoadKeyA
RegDeleteValueW
RegDeleteKeyA
RegQueryValueExA
RegDeleteKeyW
RegEnumKeyExA
RegQueryInfoKeyA
RegDeleteValueA
RegEnumValueA
RegLoadKeyW
RegOpenKeyW
RegCreateKeyExA
RegEnumKeyExW
RegQueryValueW
RegOpenKeyA
RegEnumValueW
RegGetKeySecurity
RegQueryInfoKeyW
RegCreateKeyExW

gdi32

CancelDC
ExcludeClipRect
AddFontResourceExA
RestoreDC
AddFontResourceTracking
CreateSolidBrush
GetClipBox
AddFontResourceW
ClearBrushAttributes
ClearBitmapAttributes
CopyMetaFileA
GetPixel
GetPixel
GetBitmapBits
DeleteDC
GetCurrentPositionEx
ExtTextOutA
AddFontResourceA
BeginPath

kernel32

GetCommandLineA
GetDateFormatA
GetModuleFileNameA
GetModuleHandleA
lstrlenA
GetFileAttributesA
GetStdHandle
GetStringTypeW
HeapAlloc
WideCharToMultiByte
SetLastError
GlobalAlloc
GetLastError
GetFullPathNameA
GlobalFree
lstrcmpiA
lstrcmpA
lstrcpyA
GetFileType
GetFileSize

user32

GetWindowTextA
AppendMenuW
LoadCursorA
DrawTextW
GetCursor
DrawIconEx
BlockInput
DialogBoxParamA
InsertMenuA
DrawTextA
IsMenu
LoadMenuA
CreateIcon
GetFocus
GetMenu
CopyImage

comctl32

ImageList_LoadImageW
ImageList_DrawEx
ImageList_Create
ImageList_Destroy
ImageList_GetDragImage
ImageList_Draw
ImageList_AddMasked
ImageList_DrawIndirect
ImageList_GetImageRect
ImageList_GetIcon
ImageList_DragEnter
ImageList_Copy
InitCommonControls
ImageList_Merge
ImageList_Remove
ImageList_DragLeave
ImageList_LoadImage
ImageList_GetIconSize

Sections

.text
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 64KB - Virtual size: 63KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 113KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7b7448d912e9fc3868caf843bb1c246a

Headers

File Characteristics

Imports

advapi32

gdi32

kernel32

user32

comctl32

Sections

.text Size: 8KB - Virtual size: 4KB

.data Size: 64KB - Virtual size: 63KB

.rdata Size: 4KB - Virtual size: 113KB

.rsrc Size: 4KB - Virtual size: 2KB

.text
Size: 8KB - Virtual size: 4KB

.data
Size: 64KB - Virtual size: 63KB

.rdata
Size: 4KB - Virtual size: 113KB

.rsrc
Size: 4KB - Virtual size: 2KB