578aa7043c8d8ca27dad2b4cef0bbf1a

General

Target

578aa7043c8d8ca27dad2b4cef0bbf1a
Size

57KB
MD5

578aa7043c8d8ca27dad2b4cef0bbf1a
SHA1

a5899349dc9f9adf0948a8307774b018565d6791
SHA256

a6e06c19fec0722d9e28914470fbc26b245522558577b85d2310a3e229613e1c
SHA512

32c8f0ded82a2dcd1c4adbdad5126169d28a2108c25c50b2b2aac90ce567a72529305be27ffcc2983b80d6c7d9f3e6258ad6d362dbc6fd5f3b1da5315745de4a
SSDEEP

1536:b82sYr0Vw1NASr+aHqPnlCHupG1CDH+w/jH8OuI8K:b827huajHB1CDH+mjce8K

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
578aa7043c8d8ca27dad2b4cef0bbf1a

Files

578aa7043c8d8ca27dad2b4cef0bbf1a
.exe windows:4 windows x86 arch:x86

8c4763a67600478b05e33615350e1981

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

AddAtomW
BuildCommDCBA
CreateDirectoryExA
CreateDirectoryExW
EnterCriticalSection
ExitProcess
GetDiskFreeSpaceExW
GetFileTime
GetLocaleInfoA
GetStartupInfoW
GetUserDefaultLCID
GlobalAddAtomW
OpenProfileUserMapping
SetDefaultCommConfigA

advapi32

ChangeServiceConfigA
EnumServicesStatusA
InitializeSecurityDescriptor
LogonUserA
LookupPrivilegeNameW
OpenBackupEventLogA
OpenProcessToken
ReadEventLogA
SetKernelObjectSecurity
SetSecurityDescriptorOwner
SetSecurityDescriptorSacl
SetServiceObjectSecurity
StartServiceCtrlDispatcherA

user32

CharNextW
DialogBoxIndirectParamW
DrawCaptionTempW
EnumDisplaySettingsExW
EqualRect
GetWindowModuleFileNameW
OemToCharW
SendDlgItemMessageA
SendMessageTimeoutW
SetRect
SetUserObjectSecurity
SubtractRect
UnregisterHotKey

shell32

DuplicateIcon
ExtractIconW
FindExecutableW
InternalExtractIconListA
SHBrowseForFolderA
SHGetDesktopFolder
SheSetCurDrive

gdi32

DeleteObject
GetCharWidthA
GetCurrentPositionEx
GetMetaRgn
GetPixel
GetTextExtentExPointA
GetWindowOrgEx

Sections

.text
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 53KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

8c4763a67600478b05e33615350e1981

Headers

File Characteristics

Imports

kernel32

advapi32

user32

shell32

gdi32

Sections

.text Size: 512B - Virtual size: 4KB

.rdata Size: 2KB - Virtual size: 4KB

.data Size: 53KB - Virtual size: 56KB

.text
Size: 512B - Virtual size: 4KB

.rdata
Size: 2KB - Virtual size: 4KB

.data
Size: 53KB - Virtual size: 56KB