57e194ea77fe60dd005d44a377177d39

General

Target

57e194ea77fe60dd005d44a377177d39
Size

115KB
MD5

57e194ea77fe60dd005d44a377177d39
SHA1

b8bddc51544ecd8fa66487e75b5768300c4bc0bf
SHA256

702fafc0180beeb995d262e93d39a0bdb9f52ca2461be4a8663197ea9bc99447
SHA512

9ea933f534f32b2dcc19921d0919279cd99af5aa1861ccabb0ea5884a94cad6a2d6e79a0ba3148d5a322e3f04ac7dfdcbc361a121ac6743a6e5b0c809fffad86
SSDEEP

1536:xlyhjmAjKZCBufaIcnm0ewgdoX2pSg4Pc7xtsOcfTBVhOX/JeaI9TmnwWBNtEUI5:xlyjnBLeYfgiLhbN98mQl+xGN5+

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
57e194ea77fe60dd005d44a377177d39

Files

57e194ea77fe60dd005d44a377177d39
.exe windows:4 windows x86 arch:x86

3356d339e52cabfc49af11267f6bcb7a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

CharNextA
GetDesktopWindow
GetParent
GetSystemMetrics
TranslateMessage

gdi32

CreateCompatibleDC
GetPixel
CreateFontIndirectA
GetDeviceCaps
SetMapMode
SaveDC
PatBlt
DeleteObject
RectVisible
GetObjectA
CreateSolidBrush
CreatePalette
DeleteDC
SetTextAlign
GetStockObject
SetStretchBltMode
LineTo
SelectPalette
RestoreDC
GetClipBox
CreatePen
SetTextColor
SetPixel
GetTextMetricsA
SelectObject

kernel32

SetCurrentDirectoryA
MulDiv
GetModuleHandleW
GetOEMCP
lstrcmpiA
GetProcessHeap
QueryPerformanceCounter
GlobalFindAtomW
GetCurrentProcess
GetWindowsDirectoryA
GetCommandLineW
GetCurrentProcessId
lstrlenW
GetCommandLineA
GetCurrentThreadId
GetStartupInfoA
GetCurrentThread
GetModuleHandleA
GetACP
RemoveDirectoryA
lstrcmpA
DeleteFileA
GlobalFindAtomA
IsDebuggerPresent
DeleteFileW
lstrcmpiW
CopyFileA
GetVersion
RemoveDirectoryW
GetThreadLocale
GetTickCount
GetConsoleOutputCP
GetDriveTypeA
GetUserDefaultLangID
lstrlenA
VirtualAlloc
VirtualFree

glu32

gluQuadricCallback

Sections

.text
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 80KB - Virtual size: 79KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3356d339e52cabfc49af11267f6bcb7a

Headers

File Characteristics

Imports

user32

gdi32

kernel32

glu32

Sections

.text Size: 14KB - Virtual size: 13KB

.rdata Size: 7KB - Virtual size: 6KB

.data Size: 80KB - Virtual size: 79KB

.rsrc Size: 13KB - Virtual size: 12KB

.text
Size: 14KB - Virtual size: 13KB

.rdata
Size: 7KB - Virtual size: 6KB

.data
Size: 80KB - Virtual size: 79KB

.rsrc
Size: 13KB - Virtual size: 12KB