64d114196c667d6eaa2e308cb2ee345f

Sharing

Copy URL Twitter E-mail

General

Target

64d114196c667d6eaa2e308cb2ee345f
Size

261KB
MD5

64d114196c667d6eaa2e308cb2ee345f
SHA1

5bd742a3feb2d91a59a337c589a2a88772f46362
SHA256

8d3cbed82858eb4cdc460835dd72a0ec64af07b67e31561bfa0c1ddf52f38080
SHA512

cf6b5d0bcee378be29513e699d7dc60e81865775468b70d6a88d09325f84b8484ae6ef1ff7a003bfc39b83638107931b748de0ff8ff23204f9345be633d2ab9d
SSDEEP

6144:DaLwlfrSlcK6+NobT685szlvDjWB4Ox1OSofIU:DaLyrSlcK6sob+SszlvDjW+a1OSof

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
64d114196c667d6eaa2e308cb2ee345f

Files

64d114196c667d6eaa2e308cb2ee345f
.exe windows:4 windows x86 arch:x86

98c2f9d268fdabfc3fd515d2c68cfbce

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

GetLastError
IsBadHugeReadPtr
lstrcpynA
ReadFile
SetFilePointer
LocalFree
LoadLibraryA
WriteFile
GetProcAddress
SetHandleCount
VirtualQuery
GetModuleHandleW
GetCommandLineW
MoveFileA
SetEndOfFile
GetACP
MoveFileExA
SetThreadLocale
WideCharToMultiByte
SetEvent
ExitThread
SetLastError
SetErrorMode
lstrcpyA
WaitForSingleObject
VirtualAllocEx
IsBadReadPtr
VirtualAlloc
GetVersionExA
SizeofResource
GetModuleHandleA
GlobalAlloc
HeapDestroy
ExitProcess
LocalReAlloc

user32

GetKeyboardState
GetPropA
GetDC
GetWindowThreadProcessId
IsWindowEnabled
GetKeyboardType
GetMenuItemID
GetLastActivePopup
InvalidateRect
GetClientRect
InsertMenuItemA
GetSubMenu
GetScrollRange
GetSysColor
IntersectRect
GetWindow
IsDialogMessageA
IsWindowVisible
GetTopWindow
GetMenuState
IsDialogMessageW
GetMenuItemInfoA
GetParent
GetMenu
GetWindowLongW
GetDCEx
GetKeyState
GetCursorPos
GetKeyboardLayout

gdi32

CreateDIBitmap
SelectPalette
CreateDIBSection
CreateBitmap
BitBlt
GetCurrentPositionEx
CopyEnhMetaFileA
GetDCOrgEx
SetPixel

Sections

.text
Size: 76KB - Virtual size: 75KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 169KB - Virtual size: 169KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.RES67
Size: 1024B - Virtual size: 949B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.RES42
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.RES18
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.RES74
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.RES21
Size: 512B - Virtual size: 452B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.RES28
Size: 512B - Virtual size: 412B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.RES26
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.RES94
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

98c2f9d268fdabfc3fd515d2c68cfbce

Headers

File Characteristics

Imports

kernel32

user32

gdi32

Sections

.text Size: 76KB - Virtual size: 75KB

DATA Size: 169KB - Virtual size: 169KB

.RES67 Size: 1024B - Virtual size: 949B

.RES42 Size: 4KB - Virtual size: 3KB

.RES18 Size: 1KB - Virtual size: 1KB

.RES74 Size: 1KB - Virtual size: 1KB

.RES21 Size: 512B - Virtual size: 452B

.RES28 Size: 512B - Virtual size: 412B

.RES26 Size: 2KB - Virtual size: 1KB

.RES94 Size: 1KB - Virtual size: 1KB

.rsrc Size: 2KB - Virtual size: 2KB

.text
Size: 76KB - Virtual size: 75KB

DATA
Size: 169KB - Virtual size: 169KB

.RES67
Size: 1024B - Virtual size: 949B

.RES42
Size: 4KB - Virtual size: 3KB

.RES18
Size: 1KB - Virtual size: 1KB

.RES74
Size: 1KB - Virtual size: 1KB

.RES21
Size: 512B - Virtual size: 452B

.RES28
Size: 512B - Virtual size: 412B

.RES26
Size: 2KB - Virtual size: 1KB

.RES94
Size: 1KB - Virtual size: 1KB

.rsrc
Size: 2KB - Virtual size: 2KB