65d7457610d69cc2aed74d9448113049

Sharing

Copy URL

Twitter E-mail

General

Target

65d7457610d69cc2aed74d9448113049
Size

80KB
MD5

65d7457610d69cc2aed74d9448113049
SHA1

c288a291bdc9c5521ada2fd3fe1d6085599303c7
SHA256

d67a2f32e537ddd0a790724da5cae1a2e7b13400d67ee9947ffb03435a9ce637
SHA512

1f44ccc5575bad4552d8a432d1cf5f4628622509d692df116588249e2b90f90655b95ff20d448d233202078d68b4b1005db4063a14e4c6dcf618954aae22f711
SSDEEP

768:pio+hXHEE5pqE1tEAszF2M7t21wAN2SxuXQGZLc+Oqo7SN1ZePYHYVWs7kw:soWkCqE16tI1t2KIROtGZeg4VrR

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
65d7457610d69cc2aed74d9448113049

Files

65d7457610d69cc2aed74d9448113049
.exe windows:4 windows x86 arch:x86

b245c5331c45b57a3d2cbd5b4f255730

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCommandLineA
OpenFileMappingA
CreateThread
GetLastError
GetStdHandle
DeleteAtom
FindAtomA
CopyFileExW
ReadConsoleA
GlobalFree
CreateProcessA
GetComputerNameA
ReadFile
Sleep
CreateProcessA
DeleteFileW
GetLastError
CreateThread
GetFileSize
GetConsoleMode
DeleteFileA
CreateDirectoryA
GetCPInfo
CopyFileW
WriteFile
DeleteAtom
CopyFileA
FindAtomA
GetFileTime
GlobalFree
SetLastError
DeleteFileW
Sleep
OpenFileMappingA
ExitThread
GlobalFree
GetLastError
CopyFileExA
GetCommandLineA
GetConsoleMode
ReadFile
WriteFile
CreateDirectoryA
GetStdHandle
CopyFileExW
GetComputerNameA
CopyFileA
GetCPInfo

advapi32

RegDeleteValueA
RegGetKeySecurity
RegOpenKeyW
RegQueryInfoKeyA
RegCreateKeyExW
RegQueryInfoKeyW
RegOpenKeyExW
RegOpenKeyExA
RegEnumKeyW
RegQueryValueA
RegQueryInfoKeyA
RegEnumKeyW
RegOpenKeyW
RegDeleteValueW
RegOpenKeyExW
RegDeleteKeyA
RegCreateKeyExA
RegOpenKeyA
RegReplaceKeyA
RegLoadKeyW
RegQueryValueA
RegCreateKeyW
RegFlushKey
RegReplaceKeyW
RegQueryInfoKeyW
RegEnumKeyA
RegEnumValueW

user32

LoadMenuA
GetDC
AppendMenuA
GetDlgItem
CopyImage
IsWindow
IsMenu
DialogBoxParamW
GetFocus
AlignRects
DrawIcon

Sections

CODE
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.qgdata
Size: 52KB - Virtual size: 49KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 4KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b245c5331c45b57a3d2cbd5b4f255730

Headers

File Characteristics

Imports

kernel32

advapi32

user32

Sections

CODE Size: 4KB - Virtual size: 2KB

.qgdata Size: 52KB - Virtual size: 49KB

.tls Size: 4KB - Virtual size: 4KB

.rdata Size: 8KB - Virtual size: 6KB

.idata Size: 4KB - Virtual size: 2KB

.edata Size: 4KB - Virtual size: 29KB

CODE
Size: 4KB - Virtual size: 2KB

.qgdata
Size: 52KB - Virtual size: 49KB

.tls
Size: 4KB - Virtual size: 4KB

.rdata
Size: 8KB - Virtual size: 6KB

.idata
Size: 4KB - Virtual size: 2KB

.edata
Size: 4KB - Virtual size: 29KB