48de525eb080a5d797ef017116fa424e

Sharing

Copy URL Twitter E-mail

General

Target

48de525eb080a5d797ef017116fa424e
Size

374KB
MD5

48de525eb080a5d797ef017116fa424e
SHA1

1e08cd2cd7c7fa585e63d8f5a2543ec8eac2a501
SHA256

7b91f41295932adf5143a9f3bbe6d80a7c311b383e52044f9bc9ee16dc725d90
SHA512

f93d10b14109df20995fd4e8987a0a0d70ec44b913aa3d406ab061d8680e139fddab02ada57e94faae99a7dcf92f443f225bb97793cecf0b28ecb3580e313e58
SSDEEP

6144:0E7PkhGy6RZTUJDJ+fiAunbmzQnFiCnC56vUw27WZYfjLILebw6Z9OimK:5PfxVUJDclkFiGugPZ6k5Gl

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
48de525eb080a5d797ef017116fa424e

Files

48de525eb080a5d797ef017116fa424e
.exe windows:4 windows x86 arch:x86

636581434f4487cca5cb870a980f8583

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

oleaut32

SafeArrayGetUBound
SafeArrayCreate
VariantCopyInd
SafeArrayGetElement
SysFreeString
GetErrorInfo
SysStringLen

user32

GetClassInfoA
SetCapture
SystemParametersInfoA
DestroyIcon
GetCursor
wsprintfA
SetWindowLongW
GetMenu
CreateWindowExA
CallNextHookEx
CreatePopupMenu
EnableScrollBar
GetWindowRect
FrameRect
TrackPopupMenu
SetForegroundWindow
ActivateKeyboardLayout
LoadKeyboardLayoutA
MessageBeep
EnableWindow
SetPropA
GetKeyboardType
SetScrollRange
InsertMenuItemA
ClientToScreen
DrawMenuBar
GetSysColor
InflateRect
SetWindowLongA
ScreenToClient
ShowWindow
IsWindowVisible
LoadBitmapA
IsChild
IntersectRect
GetTopWindow
PostQuitMessage
InsertMenuA
GetPropA
RedrawWindow
ReleaseDC
DrawIcon
KillTimer
GetKeyState
EnumWindows
WaitMessage
LoadCursorA
SetScrollPos
ChildWindowFromPoint
CharNextW
CharToOemA
IsWindowUnicode
TranslateMessage
GetIconInfo
GetParent
GetKeyNameTextA
DefFrameProcA
GetDlgItem
GetMenuState
OffsetRect
GetClipboardData
SetWindowTextA
RegisterClipboardFormatA
GetClientRect
PeekMessageW
SetFocus
GetFocus
GetMessagePos
DestroyWindow
PeekMessageA
GetDCEx
RemovePropA
EnableMenuItem
DrawAnimatedRects
CharNextA
DefMDIChildProcA
DispatchMessageA
SendMessageA
GetScrollPos
IsDialogMessageA
GetWindowDC
GetActiveWindow
GetSystemMenu

comctl32

ImageList_Create
ImageList_Destroy
ImageList_Remove
ImageList_DragShowNolock
ImageList_Read
ImageList_Draw
ImageList_Add
ImageList_Write

kernel32

VirtualAllocEx
ExitProcess
GetProcAddress
GetVersionExA
IsBadHugeReadPtr
ExitThread
LoadLibraryExA
GlobalAlloc
LoadLibraryA
LocalAlloc
GetModuleHandleA
VirtualAlloc
GetCommandLineA

Sections

.text
Size: 55KB - Virtual size: 55KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 303KB - Virtual size: 302KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

RES6
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

RES9
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

RES5
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

RES1
Size: 512B - Virtual size: 458B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

RES7
Size: 1024B - Virtual size: 785B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

RES4
Size: 512B - Virtual size: 324B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

RES8
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

636581434f4487cca5cb870a980f8583

Headers

File Characteristics

Imports

oleaut32

user32

comctl32

kernel32

Sections

.text Size: 55KB - Virtual size: 55KB

DATA Size: 303KB - Virtual size: 302KB

RES6 Size: 3KB - Virtual size: 3KB

RES9 Size: 1KB - Virtual size: 1KB

RES5 Size: 2KB - Virtual size: 1KB

RES1 Size: 512B - Virtual size: 458B

RES7 Size: 1024B - Virtual size: 785B

RES4 Size: 512B - Virtual size: 324B

RES8 Size: 2KB - Virtual size: 2KB

.rsrc Size: 2KB - Virtual size: 2KB

.text
Size: 55KB - Virtual size: 55KB

DATA
Size: 303KB - Virtual size: 302KB

RES6
Size: 3KB - Virtual size: 3KB

RES9
Size: 1KB - Virtual size: 1KB

RES5
Size: 2KB - Virtual size: 1KB

RES1
Size: 512B - Virtual size: 458B

RES7
Size: 1024B - Virtual size: 785B

RES4
Size: 512B - Virtual size: 324B

RES8
Size: 2KB - Virtual size: 2KB

.rsrc
Size: 2KB - Virtual size: 2KB