4d921d548da02c03f1f20c36b128481f

Sharing

Copy URL Twitter E-mail

General

Target

4d921d548da02c03f1f20c36b128481f
Size

236KB
MD5

4d921d548da02c03f1f20c36b128481f
SHA1

19b875f475b079ebfb2066634942fb083057f9c8
SHA256

9fe6faf33ce0c7b847190fa1cbfa41d0652349a6e0d49970865db7ea986f0c32
SHA512

d891b12f91382ac9475e28460defc02e9f4be3e1842fb2862bac3b303ea0fae82cbc46e370d2b646401cf2faeabfb5b0260012133858cd01030dc70dde889f5f
SSDEEP

3072:YZ5bDdTMuc++sK5mq/cFZX7hkeA2Zgt5/Aw4Yh4eV8o68leY:YZxDdT++zK5mfPXXFsSQ8o6f

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4d921d548da02c03f1f20c36b128481f

Files

4d921d548da02c03f1f20c36b128481f
.exe windows:4 windows x86 arch:x86

09bc184b885a0f5b52d71bca649f8416

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCurrentThreadId
GetSystemDefaultLangID
LoadLibraryA
GetModuleHandleA
RaiseException
IsBadReadPtr
SetHandleCount
ExitProcess
FindClose
GetCommandLineA
LocalAlloc
ExitThread
VirtualAllocEx
CompareStringA
SizeofResource
GetCurrentThread
GetCommandLineW
GetVersionExA
lstrcpyA
LoadLibraryExA
GetProcAddress

shlwapi

SHGetValueA
SHStrDupA
PathFileExistsA
PathIsContentTypeA
SHQueryValueExA
SHDeleteKeyA
SHEnumValueA
PathGetCharTypeA
SHQueryInfoKeyA
PathIsDirectoryA

gdi32

GetDIBits
GetPaletteEntries
GetDIBColorTable
GetDCOrgEx
GetObjectA

oleaut32

SafeArrayUnaccessData
SafeArrayGetUBound
SafeArrayGetElement
SysFreeString
SysStringLen

user32

DefWindowProcA
InsertMenuA
GetIconInfo
DrawFrameControl
GetSystemMenu
GetSubMenu
SendMessageA
GetSysColorBrush
GetTopWindow
GetWindowTextA
DrawIcon
GetDC
DrawMenuBar
IsDialogMessageW
DeleteMenu
IsWindow
DefMDIChildProcA
MessageBeep
DrawIconEx
MapWindowPoints
MessageBoxA
GetCursorPos
CharLowerA
RegisterClipboardFormatA
PostMessageA
GetMessagePos
FrameRect
GetKeyNameTextA
DestroyWindow
CheckMenuItem
CreatePopupMenu
DestroyIcon
GetWindowPlacement
InflateRect
RegisterClassA
GetScrollInfo
EqualRect
CharToOemA
LoadStringA
GetKeyboardLayoutNameA
DestroyMenu
ScrollWindow
ScreenToClient
GetPropA
GetCursor
GetMenuItemID
RemovePropA
RegisterWindowMessageA
RemoveMenu
GetMenuStringA
EnumWindows
EmptyClipboard
GetFocus
PtInRect
ReleaseDC
DestroyCursor
PeekMessageW
OpenClipboard
GetWindowDC
InvalidateRect
GetForegroundWindow
LoadIconA
EnumThreadWindows
SetActiveWindow
IsWindowUnicode
MapVirtualKeyA
GetWindowLongA
IsWindowEnabled
KillTimer
GetClassInfoA
GetKeyboardLayout
GetKeyboardLayoutList
IsRectEmpty
CharNextW
GetClassNameA
GetKeyState
IntersectRect
LoadBitmapA
EnumChildWindows
FindWindowA
DispatchMessageA
GetClientRect
OffsetRect
CallNextHookEx
LoadKeyboardLayoutA
GetMenuItemCount
CharUpperBuffA
GetDlgItem
GetScrollPos
GetClipboardData
GetMenu
PostQuitMessage
GetWindowLongW
GetDCEx
PeekMessageA
GetLastActivePopup
IsWindowVisible
IsZoomed
CloseClipboard
BeginPaint
GetParent
CharNextA
GetKeyboardType
RedrawWindow
EnableWindow
FillRect
GetMenuItemInfoA
DefFrameProcA
IsIconic
GetCapture
GetScrollRange
DispatchMessageW
ReleaseCapture
ClientToScreen
IsChild
EnableMenuItem
GetWindowThreadProcessId
GetDesktopWindow
CreateIcon
IsDialogMessageA
GetKeyboardState
CallWindowProcA
ChildWindowFromPoint
GetActiveWindow
InsertMenuItemA

Sections

.text
Size: 72KB - Virtual size: 72KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 150KB - Virtual size: 149KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc9
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc4
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc0
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc6
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc3
Size: 512B - Virtual size: 505B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 976B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

09bc184b885a0f5b52d71bca649f8416

Headers

File Characteristics

Imports

kernel32

shlwapi

gdi32

oleaut32

user32

Sections

.text Size: 72KB - Virtual size: 72KB

.data Size: 150KB - Virtual size: 149KB

.rsrc9 Size: 1KB - Virtual size: 1KB

.rsrc4 Size: 5KB - Virtual size: 5KB

.rsrc0 Size: 1KB - Virtual size: 1KB

.rsrc6 Size: 2KB - Virtual size: 1KB

.rsrc3 Size: 512B - Virtual size: 505B

.rsrc Size: 1024B - Virtual size: 976B

.text
Size: 72KB - Virtual size: 72KB

.data
Size: 150KB - Virtual size: 149KB

.rsrc9
Size: 1KB - Virtual size: 1KB

.rsrc4
Size: 5KB - Virtual size: 5KB

.rsrc0
Size: 1KB - Virtual size: 1KB

.rsrc6
Size: 2KB - Virtual size: 1KB

.rsrc3
Size: 512B - Virtual size: 505B

.rsrc
Size: 1024B - Virtual size: 976B