46e6a843f7ed9ad9016165c920baf48c

General

Target

46e6a843f7ed9ad9016165c920baf48c
Size

37KB
MD5

46e6a843f7ed9ad9016165c920baf48c
SHA1

3ff7759581461908bd65f6242c598fa93df9ba16
SHA256

47eb787719bebdb02bb29b696ac902e8c3e4fc8f7dbf822594dc473d247261be
SHA512

c4ee2ea9a75568ce9894d0781076e39525ebf4e479638277e1d7e57d6bb6b8d7cebf438acaaf3d71515b459adbdf0ae55341da950671852213f76f76ec80f2a5
SSDEEP

768:0SGF67elzoEl9ZfQnUYlnsE8zLtuDV0MMNglega5tMY2:0Vkej9f0CzJOBdYtMY2

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
46e6a843f7ed9ad9016165c920baf48c

Files

46e6a843f7ed9ad9016165c920baf48c
.exe windows:4 windows x86 arch:x86

eb811c916c02f0a47f9a474cbdbf1340

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

GetTextFaceA
ColorMatchToTarget
ScaleWindowExtEx
GdiGetBatchLimit
GetRegionData
ResetDCA
RectVisible
GetSystemPaletteEntries
GetPolyFillMode
CreateDIBSection
SetBkMode

comdlg32

ChooseFontA

kernel32

SetConsoleNumberOfCommandsW
GetLocalTime
GetDiskFreeSpaceA
RegisterConsoleVDM
Sleep
lstrcmpA
DosDateTimeToFileTime
SetTapeParameters
GetProfileSectionA
lstrcmpW
GetSystemTime
GetModuleHandleA
GetConsoleWindow
GetTimeFormatA
FindCloseChangeNotification
GetStartupInfoW
DuplicateHandle
PeekNamedPipe
GetSystemTimeAdjustment
SetFileApisToOEM
CompareStringA
SetTapePosition
GetModuleHandleW
lstrlenW
lstrcmpiW
lstrcmpiA
GetExitCodeProcess
_lread
GetConsoleCursorInfo
lstrlenA
ExitProcess
VirtualAlloc
LockResource
VirtualFree
GetDefaultCommConfigW

msvcrt

_mbbtombc
fseek
fwprintf
isalpha
_set_error_mode
strrchr
_wexeclpe
_findnext64
atan2
gmtime
_ismbclegal
_wcsnset
_msize

user32

DrawTextA
GetCaretBlinkTime
GetAltTabInfoA
CharLowerBuffW
GetAltTabInfoW
DrawAnimatedRects
GetActiveWindow

Sections

.text
Size: 4KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.gsqdl
Size: 10KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.xul
Size: 21KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

eb811c916c02f0a47f9a474cbdbf1340

Headers

DLL Characteristics

File Characteristics

Imports

gdi32

comdlg32

kernel32

msvcrt

user32

Sections

.text Size: 4KB - Virtual size: 5KB

.gsqdl Size: 10KB - Virtual size: 15KB

.xul Size: 21KB - Virtual size: 36KB

.reloc Size: 1024B - Virtual size: 1KB

.text
Size: 4KB - Virtual size: 5KB

.gsqdl
Size: 10KB - Virtual size: 15KB

.xul
Size: 21KB - Virtual size: 36KB

.reloc
Size: 1024B - Virtual size: 1KB