4a0e981eca687f477282135d70e48b22

General

Target

4a0e981eca687f477282135d70e48b22
Size

184KB
MD5

4a0e981eca687f477282135d70e48b22
SHA1

73d1022083d9a77e3bb869921f5fc812d63ba205
SHA256

77c06cc7231f952414f45dbdd6892053cb5ba0978f29a3b07af542100b1a1514
SHA512

9e5c2824f9244657eaffdfce6867700b475e8714524e27b14e536923ad0f80177e4138d7b88ba377b05d5fdfe63feee4f043706f850492c36a9023086612d6e4
SSDEEP

3072:ByfesfbfOWdJ92Aqgw1DwA5rrgbGpUWPz3cI1P8QRT3g2B7d04/M/VTsbp7/+1Il:IfeszOWdL2A1w1DbrsCiWr3KcfB7d04z

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4a0e981eca687f477282135d70e48b22

Files

4a0e981eca687f477282135d70e48b22
.exe windows:5 windows x86 arch:x86

66e9b391c39ae4177fb4e26436ad74ab

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

GetCurrentObject
Escape
SetBitmapDimensionEx
GetSystemPaletteUse
SetTextAlign
TextOutA
MoveToEx

comctl32

ImageList_GetIcon
DestroyPropertySheetPage
ImageList_ReplaceIcon
PropertySheetW

comdlg32

PrintDlgExW
ChooseColorW
GetOpenFileNameW
GetFileTitleW

ntdll

_aullrem

user32

GetDoubleClickTime
CreatePopupMenu
GetNextDlgTabItem
GetWindow
GetSystemMenu
EnumChildWindows
CreateDialogIndirectParamW
GetDlgCtrlID
ScreenToClient
GetScrollPos
LoadIconW
GetKeyboardType
GetDlgItemInt

kernel32

LoadLibraryA
OpenSemaphoreW
GlobalDeleteAtom
GlobalAddAtomA
lstrcmpiA
GetProcAddress
SetTimerQueueTimer
DeleteFileA
LocalLock
GetModuleHandleW
IsBadWritePtr
GlobalAddAtomW
GetFileAttributesA
lstrlenW

Exports

Exports

?xbvOdrtzhKobk@@YG_NK@Z

Sections

.text
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 142KB - Virtual size: 210KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 91B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.crt
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

66e9b391c39ae4177fb4e26436ad74ab

Headers

File Characteristics

Imports

gdi32

comctl32

comdlg32

ntdll

user32

kernel32

Exports

Exports

Sections

.text Size: 28KB - Virtual size: 27KB

.data Size: 142KB - Virtual size: 210KB

.edata Size: 512B - Virtual size: 91B

.crt Size: 5KB - Virtual size: 5KB

.rsrc Size: 4KB - Virtual size: 4KB

.reloc Size: 3KB - Virtual size: 3KB

.text
Size: 28KB - Virtual size: 27KB

.data
Size: 142KB - Virtual size: 210KB

.edata
Size: 512B - Virtual size: 91B

.crt
Size: 5KB - Virtual size: 5KB

.rsrc
Size: 4KB - Virtual size: 4KB

.reloc
Size: 3KB - Virtual size: 3KB