4eca4a32ccdf881ef2dcf51abaa0ee43

General

Target

4eca4a32ccdf881ef2dcf51abaa0ee43
Size

189KB
MD5

4eca4a32ccdf881ef2dcf51abaa0ee43
SHA1

32aec7d4546fb21adede131b7bbcb7515620d68d
SHA256

14d9fffa00eb816a424fa7fb56c3a6b93318bd81c6c524b17657e156f2157d1e
SHA512

b3ef8adab8a07ab5a70cae9bc0664eef5fdd5d168bf06c9772cc15caf5c5f7dd2e10bd3ec21b1eb9ece6ea428b4b8b83f15287322475ac338656d763b49d0b68
SSDEEP

384:9QMU0LhsAUmHJ73Bnt59DOrUlFKJBaADoAKuyrID+AqwFnc2bd7BthfTBP8u4nXE:9vNVUmp/OrEoZDkAVFc2bd79r98u4nO

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4eca4a32ccdf881ef2dcf51abaa0ee43

Files

4eca4a32ccdf881ef2dcf51abaa0ee43
.exe windows:4 windows x86 arch:x86

3412d2c0c07cd48d519e0fc3219bf4ca

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

GetPixel
SelectPalette
SetMapMode
RestoreDC
SetStretchBltMode
RectVisible
GetClipBox
SelectObject
CreateSolidBrush
SetTextAlign
GetObjectA
CreateFontIndirectA
CreatePalette
GetTextMetricsA
GetStockObject
LineTo
SetTextColor
GetDeviceCaps
DeleteObject
CreatePen
SetPixel
PatBlt
CreateCompatibleDC
DeleteDC
SaveDC

user32

TranslateMessage
GetSystemMetrics
GetParent
CharNextA
GetDesktopWindow

kernel32

GetProcessHeap
GetCurrentThread
lstrlenA
GetStartupInfoA
GetVersion
GetCommandLineA
GetModuleHandleW
MulDiv
GlobalFindAtomA
QueryPerformanceCounter
CopyFileA
GetACP
DeleteFileW
lstrcmpiW
GetOEMCP
lstrlenW
SetCurrentDirectoryA
lstrcmpiA
GetCurrentProcessId
RemoveDirectoryA
GetThreadLocale
IsDebuggerPresent
GetCurrentThreadId
RemoveDirectoryW
GetConsoleOutputCP
GlobalFindAtomW
GetTickCount
GetDriveTypeA
GetModuleHandleA
DeleteFileA
GetCurrentProcess
GetCommandLineW
lstrcmpA
GetWindowsDirectoryA
VirtualAlloc
GetUserDefaultLangID
VirtualFree

glu32

gluQuadricCallback

Sections

.text
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 79KB - Virtual size: 79KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 90KB - Virtual size: 92KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

3412d2c0c07cd48d519e0fc3219bf4ca

Headers

File Characteristics

Imports

gdi32

user32

kernel32

glu32

Sections

.text Size: 12KB - Virtual size: 12KB

.rdata Size: 6KB - Virtual size: 6KB

.data Size: 79KB - Virtual size: 79KB

.rsrc Size: 90KB - Virtual size: 92KB

.text
Size: 12KB - Virtual size: 12KB

.rdata
Size: 6KB - Virtual size: 6KB

.data
Size: 79KB - Virtual size: 79KB

.rsrc
Size: 90KB - Virtual size: 92KB