662585177e6024bc531c4e6a3891bd43

Sharing

Copy URL Twitter E-mail

General

Target

662585177e6024bc531c4e6a3891bd43
Size

85KB
MD5

662585177e6024bc531c4e6a3891bd43
SHA1

7e1593c4d04d02046c8140a3ef1a6f72bb6624c2
SHA256

5964cffaf8ae8b4f187b9d201d251be18b243b8ba08ffed104c4e50575ad8059
SHA512

98ca5d9f5e10c702e7e075e61207504b2daed6957755fb3b104ef2647717b27966be266da6c1b965c523766b55c55220dac0dc643ee2d78483bafbb256a210e0
SSDEEP

1536:tHbCbIjbnYMtTgsmcSTRZBPtNK3QaFJ8E:tHbCb2YYZ3SBPA1f8E

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
662585177e6024bc531c4e6a3891bd43

Files

662585177e6024bc531c4e6a3891bd43
.exe windows:4 windows x86 arch:x86

9affb6c919304cb49c7370f4e5cb0fe9

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

oleaut32

SafeArrayGetElement
VariantChangeType
SafeArrayCreate
SysFreeString
SysReAllocStringLen
SafeArrayUnaccessData
GetErrorInfo
OleLoadPicture
SysAllocStringLen

user32

GetParent
SetCapture
CharLowerA
ShowScrollBar
DrawIconEx
GetLastActivePopup
SetClassLongA
GetKeyboardLayoutNameA
DefFrameProcA
DefMDIChildProcA
SetScrollPos
GetWindowDC
CheckMenuItem
ShowWindow
SetParent
GetCursor
GetKeyboardType
RegisterWindowMessageA
GetSysColorBrush
DestroyCursor
MapWindowPoints
CreateIcon
GetKeyboardLayout
GetKeyState
SetWindowLongA
EmptyClipboard
SetForegroundWindow
CreatePopupMenu
IsCharUpperA
GetScrollInfo
EndPaint
SetFocus
FindWindowA
IsWindowUnicode
SetTimer
GetScrollPos
IsDialogMessageA
GetClassLongA
GetSystemMenu
IsWindowEnabled
GetKeyboardLayoutList
InflateRect
LoadBitmapA
GetMenu
ReleaseCapture
SetMenuItemInfoA
SetScrollRange
WindowFromPoint
SetActiveWindow
CharLowerBuffA
RegisterClassA
MapVirtualKeyA
PostMessageA
OpenIcon
GetWindow
GetScrollRange
GetPropA
IntersectRect
DispatchMessageA
TranslateMDISysAccel
GetFocus
MessageBoxA
DispatchMessageW
IsDialogMessageW

kernel32

ExitProcess
FindClose
LoadLibraryA
GetLastError
VirtualAllocEx
GetFullPathNameA
WriteFile
GetACP
LocalFree
LocalAlloc
FreeLibrary
GetFileAttributesA
GetFileType
SetErrorMode
SizeofResource
GetVersionExA
WideCharToMultiByte
ExitThread
GetModuleHandleA
EnumCalendarInfoA
lstrcatA
VirtualQuery

Exports

Exports

_aOGpcUPiq7Ds9Q@20
MW_bCwD

Sections

.text
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: 49KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9affb6c919304cb49c7370f4e5cb0fe9

Headers

File Characteristics

Imports

oleaut32

user32

kernel32

Exports

Exports

Sections

.text Size: 9KB - Virtual size: 8KB

.data Size: 13KB - Virtual size: 12KB

.adata Size: 49KB - Virtual size: 48KB

.edata Size: 2KB - Virtual size: 1KB

.idata Size: 2KB - Virtual size: 2KB

.rsrc Size: 8KB - Virtual size: 8KB

.text
Size: 9KB - Virtual size: 8KB

.data
Size: 13KB - Virtual size: 12KB

.adata
Size: 49KB - Virtual size: 48KB

.edata
Size: 2KB - Virtual size: 1KB

.idata
Size: 2KB - Virtual size: 2KB

.rsrc
Size: 8KB - Virtual size: 8KB