65ce912e9f6d2f1e9b722bf7bb40e7aa

General

Target

65ce912e9f6d2f1e9b722bf7bb40e7aa
Size

81KB
MD5

65ce912e9f6d2f1e9b722bf7bb40e7aa
SHA1

64988c45c8520bd50366082a9d2f7f609c16e856
SHA256

19132c83935cc2cc0dac70bdf2ffd859bfa9a7e437eb93fba9ec0270d179b1ee
SHA512

4ff34e23e34cac7a92e110fc6dc128cdbc0e9ffe65cd02214d9f0051bb134c37c30a09c006b193784551c559f8c5141cde5c3bda025595bb9d4bbf3909884333
SSDEEP

1536:+eW+CKzw1S2o1W9aBjw1eKM9/3wHqrNZ23v/ge9:nW2WkBbfh3Jn2/g

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
65ce912e9f6d2f1e9b722bf7bb40e7aa

Files

65ce912e9f6d2f1e9b722bf7bb40e7aa
.exe windows:4 windows x86 arch:x86

445f5871b7fa436e9920a4095ac59362

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

InterlockedIncrement
VirtualAlloc
GetModuleFileNameA
LeaveCriticalSection
LoadLibraryA
WideCharToMultiByte
EnterCriticalSection
GetModuleFileNameW
InitializeCriticalSection
MultiByteToWideChar
DeleteCriticalSection
FreeLibrary
GetProcAddress
GetLastError

ole32

CoCreateInstance
CoCreateGuid
CoGetMalloc

user32

GetWindowTextW
DialogBoxParamA
GetWindowRect
GetDesktopWindow
SendMessageA
GetParent
SetWindowTextW
GetWindowLongA
GetSystemMetrics
SetWindowTextA
EndDialog
MoveWindow
GetWindowTextA
GetDlgItem
SetWindowLongA

advapi32

RegCloseKey
RegSetValueExA
RegOpenKeyExW
RegSetValueExW
RegCreateKeyExA
RegCreateKeyExW
RegDeleteKeyW
RegOpenKeyExA
RegDeleteKeyA

avifil32

AVIFileInfo

msvcrt

free
time
__dllonexit
wcscpy
malloc
wcsncpy
_wcsicmp
rand
wcscat
srand
_snwprintf
__CxxFrameHandler
_initterm
_onexit
exit
_ltow
_chdir
wcscmp
_beginthread
_except_handler3
_purecall
_beep
calloc
wcslen
wcsncat
_adjust_fdiv

Sections

.textbss
Size: - Virtual size: 448KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 512B - Virtual size: 476B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 80KB - Virtual size: 80KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

445f5871b7fa436e9920a4095ac59362

Headers

File Characteristics

Imports

kernel32

ole32

user32

advapi32

avifil32

msvcrt

Sections

.textbss Size: - Virtual size: 448KB

.text Size: 512B - Virtual size: 476B

.idata Size: 80KB - Virtual size: 80KB

.textbss
Size: - Virtual size: 448KB

.text
Size: 512B - Virtual size: 476B

.idata
Size: 80KB - Virtual size: 80KB