546c75b7b0bcbf28fa75ae453c7f31f6

General

Target

546c75b7b0bcbf28fa75ae453c7f31f6
Size

91KB
MD5

546c75b7b0bcbf28fa75ae453c7f31f6
SHA1

3f7a3f5eb92a728f576363ca53de0b24cd83390d
SHA256

cd4b805adcf4a4819a1f425d332d09092de77cdb20256f9546a15d8f0495e4cf
SHA512

1a9c42cc8bfb360b4892d6521830e059f3a43bb50f0b2e1fc6968f603770a33371baa2a2e675295a2bf541b6c925dac57b32f71eeed42e9e9696dead0225fe46
SSDEEP

1536:ZXJljlIAVvy07eCyKexc/Vf6QcFDu/DAjVvJCA9nB8A2:ZXDlIA197etfNhDLTvfq

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
546c75b7b0bcbf28fa75ae453c7f31f6

Files

546c75b7b0bcbf28fa75ae453c7f31f6
.exe windows:4 windows x86 arch:x86

adb21ccaf8ac6a984a2e91960cbe55f8

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetFileAttributesA
GlobalAlloc
lstrcmpiA
FreeLibrary
lstrcpyA
GetModuleHandleA
GetStringTypeW
DeleteFileA
HeapAlloc
HeapFree
lstrcpynA
GetCPInfo
GetLastError
GetStringTypeA
CloseHandle
GlobalFree
GetStdHandle

user32

EndDialog
DialogBoxParamA
IsMenu
InsertMenuA
DrawTextW
BlockInput
LoadCursorA
GetDC
IsWindow
GetWindowTextLengthA
CalcMenuBar
AppendMenuW
GetMenu
CopyImage
CreateIcon
DrawIcon
CloseWindow
GetCursor

comctl32

ImageList_LoadImageW
ImageList_DragLeave
ImageList_Copy
ImageList_Merge
ImageList_DragMove
ImageList_GetIcon
ImageList_Replace
ImageList_AddMasked
ImageList_EndDrag
ImageList_Create
ImageList_LoadImageA
ImageList_GetIconSize
ImageList_GetImageInfo
ImageList_GetDragImage
ImageList_Remove
ImageList_DragShowNolock

advapi32

RegOpenKeyExW
RegReplaceKeyW
RegEnumKeyW
RegOpenKeyExA
RegOpenKeyW
RegReplaceKeyA
RegEnumKeyExA
RegCreateKeyW
RegEnumValueW
RegQueryInfoKeyA
RegQueryInfoKeyW
RegQueryValueA
RegDeleteKeyA
RegEnumKeyExW
RegQueryValueExW
RegOpenKeyA
RegQueryValueExA
RegDeleteKeyW
RegLoadKeyW
RegFlushKey

Sections

.DeMaSh
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.MXBjZ
Size: 68KB - Virtual size: 67KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.ffOrT
Size: 6KB - Virtual size: 112KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.QyEXP
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

adb21ccaf8ac6a984a2e91960cbe55f8

Headers

File Characteristics

Imports

kernel32

user32

comctl32

advapi32

Sections

.DeMaSh Size: 10KB - Virtual size: 10KB

.MXBjZ Size: 68KB - Virtual size: 67KB

.ffOrT Size: 6KB - Virtual size: 112KB

.QyEXP Size: 2KB - Virtual size: 1KB

.DeMaSh
Size: 10KB - Virtual size: 10KB

.MXBjZ
Size: 68KB - Virtual size: 67KB

.ffOrT
Size: 6KB - Virtual size: 112KB

.QyEXP
Size: 2KB - Virtual size: 1KB