50cbbcda84278cb7a717eedb608bcdee

General

Target

50cbbcda84278cb7a717eedb608bcdee
Size

48KB
MD5

50cbbcda84278cb7a717eedb608bcdee
SHA1

cdf6700129e0eedbae676ee1d36e086b3c887649
SHA256

21677c3636e5a4635433a9014691dd765f59003d6ecf7f6222a132a6947ab33b
SHA512

ccba1dfc2d08e76b0e25e54bd11cbe2571d36099cef437cfe307ecbdea25a32b104679f3071024ad57584643fa911a791031bdfba9a900aa6999811a8ee57519
SSDEEP

768:ErP6CkgX+bHqyiooTzODgeGIZ5ic9TPv8bFfvn3NCYk+dX1oWr+BmIxP1/IjhDsU:gLkEWKro2OqIZ5ic9TPuX0Yk+V2WImMC

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
50cbbcda84278cb7a717eedb608bcdee

Files

50cbbcda84278cb7a717eedb608bcdee
.dll windows:4 windows x86 arch:x86

5c73d742d2d89fc06c6aa83d9e6a7ea4

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

AddAtomW
CreateRemoteThread
CreateWaitableTimerA
DisconnectNamedPipe
EnumResourceLanguagesW
ExitProcess
FillConsoleOutputAttribute
FindResourceExW
GetCalendarInfoW
GetCurrentDirectoryW
GetFileAttributesA
GetFileAttributesExA
GetProcAddress
GetProcessAffinityMask
GetSystemDirectoryA
GetThreadTimes
QueryDosDeviceA
ReadDirectoryChangesW
SearchPathW
SetCalendarInfoW
SetTapeParameters
SetThreadContext
VirtualAllocEx
WriteTapemark
_lread

user32

CheckRadioButton
DlgDirListComboBoxA
DrawEdge
EnumWindowStationsW
ExitWindowsEx
GetCaretBlinkTime
GetDialogBaseUnits
GetNextDlgGroupItem
GetScrollBarInfo
GetSysColor
GetWindowLongW
GetWindowRgn
InternalGetWindowText
IsCharLowerA
LoadStringW
MapVirtualKeyW
MonitorFromRect
RegisterClipboardFormatW
SetClassLongA
SetDlgItemTextW
SetSysColors
SetSystemCursor
ShowCaret
TranslateMDISysAccel
ValidateRect

gdi32

CloseEnhMetaFile
CreateColorSpaceW
CreateCompatibleDC
CreateEnhMetaFileW
CreateICW
CreatePenIndirect
EnableEUDC
GdiPlayJournal
GetCharABCWidthsFloatA
GetCharWidthA
GetColorSpace
GetDIBits
GetPaletteEntries
GetPixelFormat
GetStockObject
GetTextCharsetInfo
GetTextColor
InvertRgn
ModifyWorldTransform
OffsetRgn
PlgBlt
Rectangle
RemoveFontResourceA
SelectClipPath
SetICMProfileW
SetPixelFormat
SetROP2
SetTextCharacterExtra
StartDocW
WidenPath

Sections

.text
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5c73d742d2d89fc06c6aa83d9e6a7ea4

Headers

File Characteristics

Imports

kernel32

user32

gdi32

Sections

.text Size: 512B - Virtual size: 4KB

.data Size: 8KB - Virtual size: 20KB

.rdata Size: - Virtual size: 16KB

.rsrc Size: 1024B - Virtual size: 12KB

.text
Size: 512B - Virtual size: 4KB

.data
Size: 8KB - Virtual size: 20KB

.rdata
Size: - Virtual size: 16KB

.rsrc
Size: 1024B - Virtual size: 12KB