541de06a3eb432068849f10b0cb79921

General

Target

541de06a3eb432068849f10b0cb79921
Size

50KB
MD5

541de06a3eb432068849f10b0cb79921
SHA1

b3a24635ae16b16964a92ebafd9b3045ba267c87
SHA256

de63c7c2a9be6cf2d912f2e61dec4f1a95337e2fa738282d9f4fc3b6b50bf9fc
SHA512

bd3ba5881b65e374978193912d62aa5a03a4cb7c4fcd7a6ac30864b8315b984c2f4319f3c1761ebfbc33dc7ce63e2a7e7d67aafc1cd3fd194ea37dbf6f86d77c
SSDEEP

768:a59mW57GjH8mOiyxQxCHFYdJjdNDCYOMi2LfzLOE/P:U5y4OyxQxCHFsJjdNeYOMfbzK

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
541de06a3eb432068849f10b0cb79921

Files

541de06a3eb432068849f10b0cb79921
.exe windows:4 windows x86 arch:x86

49250946dcc5f184bb017cec64642a9d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

user32

DialogBoxParamA
InsertMenuA
CopyIcon
IsWindow
DialogBoxParamW
CreateIcon
DrawTextA
CloseWindow
DrawIcon
CopyImage
IsMenu
DrawIconEx
GetDC
GetCursor
GetFocus
EndDialog
GetWindowTextLengthA
GetMenu
CopyRect
LoadCursorA
LoadMenuA
DrawTextW
GetWindowTextA

advapi32

RegCreateKeyW
RegOpenKeyExA
RegOpenKeyA
RegQueryValueExA
RegEnumKeyA
RegEnumKeyW
RegDeleteKeyA
RegCreateKeyA
RegCreateKeyExW
RegEnumValueA
RegDeleteKeyW

comctl32

ImageList_DrawEx
ImageList_LoadImageW
ImageList_LoadImageA
DrawStatusTextW
ImageList_Copy
ImageList_Destroy
ImageList_GetIconSize
DrawStatusText
ImageList_DragEnter
CreateToolbar
ImageList_GetIcon
CreateStatusWindowW
InitCommonControls
CreateStatusWindow
ImageList_EndDrag

Sections

.text
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 34KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bbs
Size: - Virtual size: 52KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tls
Size: - Virtual size: 68B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 519B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

49250946dcc5f184bb017cec64642a9d

Headers

File Characteristics

Imports

user32

advapi32

comctl32

Sections

.text Size: 10KB - Virtual size: 10KB

.data Size: 34KB - Virtual size: 34KB

.bbs Size: - Virtual size: 52KB

.idata Size: 2KB - Virtual size: 1KB

.tls Size: - Virtual size: 68B

.rdata Size: 512B - Virtual size: 24B

.rsrc Size: 1024B - Virtual size: 519B

.text
Size: 10KB - Virtual size: 10KB

.data
Size: 34KB - Virtual size: 34KB

.bbs
Size: - Virtual size: 52KB

.idata
Size: 2KB - Virtual size: 1KB

.tls
Size: - Virtual size: 68B

.rdata
Size: 512B - Virtual size: 24B

.rsrc
Size: 1024B - Virtual size: 519B