51bffc1a4d65d4849256781cbd44c2c1

Sharing

Copy URL Twitter E-mail

General

Target

51bffc1a4d65d4849256781cbd44c2c1
Size

120KB
MD5

51bffc1a4d65d4849256781cbd44c2c1
SHA1

241ed80601a23e694a9a836c1a103ab7ee30d1ec
SHA256

79ff9b5b92a226ca8ebe1621b35a42c16e6a2773f9581d3b696bc167f3437941
SHA512

a2c925724385f29e1dcde9771c82f30fbb34e4d799df94759886a6458f1010c5d8b09d0ae9d53ca3ba326430b4126698b9f72e48505fe94669139748ecc2daf6
SSDEEP

1536:98YdF/enL8420VCKmgWwdYacF7rAUaimGfu7cOw0U:lv/gqS0gddYFXAZcO

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
51bffc1a4d65d4849256781cbd44c2c1

Files

51bffc1a4d65d4849256781cbd44c2c1
.exe windows:4 windows x86 arch:x86

2133611881582a19bdd9932cbf5ab125

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

CloseMetaFile
GetPixel
BitBlt
ExtTextOutA
BeginPath
AddFontResourceTracking
CancelDC
AddFontResourceA
SetTextColor
RestoreDC
GetCurrentPositionEx
CloseFigure
GetPixel
ExcludeClipRect
DeleteObject
GetBrushOrgEx
GetClipBox
AbortPath
GetClipBox
AddFontMemResourceEx
GetCurrentPositionEx
ClearBrushAttributes
GetPixel
GetBrushOrgEx
DeleteDC
GetBitmapBits
AbortPath
AddFontResourceExW
GetDCOrgEx
CloseFigure
DeleteObject
AddFontResourceExA
ClearBitmapAttributes
GetDCOrgEx
GetPixel
CloseFigure
BeginPath
AddFontResourceW
BitBlt
ExtTextOutA
GetBitmapBits
GetBrushOrgEx
CopyMetaFileA
CancelDC
DeleteObject
AddFontMemResourceEx
AddFontResourceExW
AddFontResourceExA
GetClipBox

comctl32

ImageList_GetIconSize
ImageList_Create
ImageList_GetIcon
ImageList_Copy
ImageList_EndDrag
ImageList_LoadImageW
ImageList_Read
ImageList_GetImageRect
ImageList_LoadImageA
ImageList_AddMasked
ImageList_ReplaceIcon
ImageList_Draw
ImageList_AddIcon
ImageList_DragEnter
ImageList_Remove
ImageList_GetImageCount
ImageList_GetDragImage
ImageList_BeginDrag
ImageList_EndDrag
ImageList_ReplaceIcon
ImageList_Copy
ImageList_DrawEx
ImageList_AddMasked
ImageList_Draw
ImageList_Read
ImageList_Remove
ImageList_DragLeave
ImageList_GetIcon
ImageList_LoadImageA
ImageList_ReplaceIcon
ImageList_DrawEx
ImageList_Destroy
ImageList_LoadImage
ImageList_GetImageInfo
ImageList_GetDragImage
ImageList_GetImageCount
ImageList_DragShowNolock
InitCommonControls
ImageList_GetIconSize
ImageList_AddIcon
ImageList_Remove
ImageList_DragEnter
ImageList_DrawIndirect

advapi32

RegQueryValueExW
RegReplaceKeyA
RegQueryValueW
RegQueryValueA
RegReplaceKeyW
RegEnumValueW
RegOpenKeyW
RegEnumKeyW
RegCreateKeyExA
RegEnumKeyA

user32

DrawIconEx
EndDialog
LoadCursorA
AppendMenuA
GetWindowTextA
DrawIcon
IsWindow
CopyIcon
DialogBoxParamA
AppendMenuW
BlockInput
GetDC
CreateIcon

Sections

.text
Size: 24KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 72KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 33KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2133611881582a19bdd9932cbf5ab125

Headers

File Characteristics

Imports

gdi32

comctl32

advapi32

user32

Sections

.text Size: 24KB - Virtual size: 20KB

.data Size: 72KB - Virtual size: 68KB

.tls Size: 4KB - Virtual size: 4KB

.rdata Size: 8KB - Virtual size: 6KB

.idata Size: 4KB - Virtual size: 3KB

.rsrc Size: 4KB - Virtual size: 33KB

.text
Size: 24KB - Virtual size: 20KB

.data
Size: 72KB - Virtual size: 68KB

.tls
Size: 4KB - Virtual size: 4KB

.rdata
Size: 8KB - Virtual size: 6KB

.idata
Size: 4KB - Virtual size: 3KB

.rsrc
Size: 4KB - Virtual size: 33KB