49e12e71da03c6c81ccbe95f94625686

Sharing

Copy URL Twitter E-mail

General

Target

49e12e71da03c6c81ccbe95f94625686
Size

156KB
MD5

49e12e71da03c6c81ccbe95f94625686
SHA1

fdfe8fdd5a101644d8938a9b4d010f8d6979fb0a
SHA256

0237efa6c0dc8733f833cb53abf48d5b7f2e51c8c875df81da9921fff1a5df6d
SHA512

cf7b9d62edb93ea97a90655d862f6a89f150927620c831fa6ca6dfec96f5516ab3125b9909baa54421da02a931c53470f490c589f0f20e8efb4cef7d48eece75
SSDEEP

1536:YPnw70gXggIBP+vjVYVvbeDE+Wyz/Hd6G2GDF0iukEZE83q7VoagHq:z0gwP+vhYNbeQ+x8GneCaa7Voa

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
49e12e71da03c6c81ccbe95f94625686

Files

49e12e71da03c6c81ccbe95f94625686
.exe windows:4 windows x86 arch:x86

1a3804cdacaddf36a5da8daf228eb964

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetFocus
CopyRect
IsMenu
CopyIcon
GetWindowTextLengthA
EndDialog
DrawTextA
DrawTextW
GetDlgItem
AppendMenuW
DrawIconEx
CreateIcon
LoadCursorA
LoadMenuA
CalcMenuBar
GetWindowTextA
InsertMenuA
CopyImage
DialogBoxParamA
AppendMenuA
DialogBoxParamW
IsWindow
BlockInput

advapi32

RegFlushKey
RegOpenKeyExA
RegEnumKeyW
RegDeleteValueW
RegOpenKeyA
RegOpenKeyW
RegEnumKeyExW
RegCreateKeyW
RegLoadKeyA
RegQueryInfoKeyW
RegDeleteValueA
RegLoadKeyW
RegCreateKeyExA
RegDeleteKeyA
RegQueryValueA
RegQueryValueW
RegEnumValueW
RegReplaceKeyW
RegCreateKeyExW
RegGetKeySecurity
RegReplaceKeyA
RegQueryValueExW
RegQueryInfoKeyW
RegGetKeySecurity
RegCreateKeyExW
RegOpenKeyExW
RegOpenKeyA
RegQueryInfoKeyA
RegOpenKeyW
RegEnumKeyExA
RegEnumValueA
RegEnumKeyA
RegReplaceKeyW
RegDeleteValueW
RegLoadKeyA
RegEnumKeyW
RegReplaceKeyA
RegQueryValueExA
RegEnumKeyExW
RegDeleteValueA
RegCreateKeyW

kernel32

GetStdHandle
OpenFileMappingA
CopyFileA
ExitThread
DeleteAtom
Sleep
FindFirstFileA
GetComputerNameA
ReadConsoleA
SetLastError
GetFileSize
FindAtomA
WriteFile
DeleteFileW
GetLastError
CopyFileExW
CreateThread
CreateDirectoryA
CopyFileExA
GlobalFree
DeleteFileA
FindAtomA
DeleteFileW
SetLastError
GetStdHandle
GetFileTime
ReadConsoleA
CopyFileA
DeleteAtom
GetCPInfo
WriteFile
GetFileSize
GetConsoleMode
CopyFileExA
OpenFileMappingA
DeleteFileA
GetLastError
FindFirstFileA
ExitThread
GlobalFree
GetFileTime
DeleteFileA
GetFileSize
DeleteFileW
CreateThread
SetLastError
GetCPInfo
GetCommandLineA
CreateDirectoryA
CopyFileExA
CopyFileExW
OpenFileMappingA
WriteFile
GetComputerNameA
ReadConsoleA
FindFirstFileA
GlobalFree

Sections

.text
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 92KB - Virtual size: 2.8MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 4KB - Virtual size: 197B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 4KB - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_MEM_READ

.rsrc
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1a3804cdacaddf36a5da8daf228eb964

Headers

File Characteristics

Imports

user32

advapi32

kernel32

Sections

.text Size: 20KB - Virtual size: 19KB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 92KB - Virtual size: 2.8MB

.tls Size: 4KB - Virtual size: 197B

.rdata Size: 4KB - Virtual size: 24B

.idata Size: 4KB - Virtual size: 3KB

.reloc Size: 4KB - Virtual size: 1KB

.rsrc Size: 20KB - Virtual size: 19KB

.text
Size: 20KB - Virtual size: 19KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 92KB - Virtual size: 2.8MB

.tls
Size: 4KB - Virtual size: 197B

.rdata
Size: 4KB - Virtual size: 24B

.idata
Size: 4KB - Virtual size: 3KB

.reloc
Size: 4KB - Virtual size: 1KB

.rsrc
Size: 20KB - Virtual size: 19KB