4bde7940adef27c4fa4374705d015046

General

Target

4bde7940adef27c4fa4374705d015046
Size

72KB
MD5

4bde7940adef27c4fa4374705d015046
SHA1

a863ee0556f0f5c048c85468b3b733b96a825861
SHA256

24ae5c2c18a9c954a078435da58b88efe61e824f976347546fbd5182b6d6d053
SHA512

8f8897819dca4e405a041fc8003e12a643bd11dcde6ea39155f5ca9bc80b241dad88b2e7cb891650bb55b7d35352d1922d962ca52bb1439cf03ac43720c580da
SSDEEP

1536:m+CIsBHG8BZJeYo7j8OLYGv/vwZDSkb1mfPUx8L8ZAliIfOT:m+CIs4wZj/OLLQ8AgU8LEA4V

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4bde7940adef27c4fa4374705d015046

Files

4bde7940adef27c4fa4374705d015046
.exe windows:4 windows x86 arch:x86

4196c2f4ded555d96adfb87d6eee72f2

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

CopyRect
GetDC
CloseWindow
GetWindowTextLengthA
DialogBoxParamA
InsertMenuA
GetFocus
CopyIcon
LoadCursorA
GetDlgItem
DialogBoxParamW
CreateIcon
GetWindowTextA
GetCursor
IsMenu
CopyImage
DrawTextA
DrawIcon
GetMenu
DrawTextW
DrawIconEx
IsWindow

kernel32

GetCommandLineA
GetFileType
GetStdHandle
CreateFileA
lstrcpynA
TerminateProcess
GetStartupInfoA
MultiByteToWideChar
GetCurrentProcess
GetVersion
SetFilePointer
GetACP
lstrcpynW
lstrcatA
GetCPInfo
WriteFile
SetHandleCount
GetOEMCP
GetModuleFileNameA
LCMapStringA
LCMapStringW
lstrcpyA
GetStringTypeW
GetStringTypeA

comctl32

ImageList_GetIconSize
DrawStatusText
ImageList_AddIcon
CreateMappedBitmap
DllGetVersion
ImageList_Destroy
ImageList_LoadImageA
CreateStatusWindowW
CreateToolbar
ImageList_Copy
ImageList_GetIcon
ImageList_Add

advapi32

RegDeleteValueW
RegOpenKeyExW
RegEnumKeyExA
RegCreateKeyExA
RegCreateKeyA
RegOpenKeyA
RegQueryValueExA
RegEnumKeyA
RegOpenKeyW
RegQueryValueExW

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 50KB - Virtual size: 17.9MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 15KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4196c2f4ded555d96adfb87d6eee72f2

Headers

File Characteristics

Imports

user32

kernel32

comctl32

advapi32

Sections

.text Size: 3KB - Virtual size: 2KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 50KB - Virtual size: 17.9MB

.rsrc Size: 15KB - Virtual size: 16KB

.text
Size: 3KB - Virtual size: 2KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 50KB - Virtual size: 17.9MB

.rsrc
Size: 15KB - Virtual size: 16KB