71b3cace1ce9479ab6e8ca7ad21d5d4b

General

Target

71b3cace1ce9479ab6e8ca7ad21d5d4b
Size

126KB
MD5

71b3cace1ce9479ab6e8ca7ad21d5d4b
SHA1

98b0dd3a2956fd81b1237da0134f5d99469edece
SHA256

09d4d7fb4031033642dce74ed9552175f997fac7de55d7e0e697ededaf2e4f89
SHA512

67213b2d6333c8e499b5d8e3d8003c3aeb3ecb09bd6581fc402d57f69b217beee324b79f4c6ab9d89228cdafb4ab9577335d5cf3abcb8ed66ae8cce57fd8587c
SSDEEP

3072:sbSO0DFwaJnZ+kOCVXlo1h5PUBnayM2rivC0:QtNoZTXlo1h1Udao

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
71b3cace1ce9479ab6e8ca7ad21d5d4b

Files

71b3cace1ce9479ab6e8ca7ad21d5d4b
.exe windows:5 windows x86 arch:x86

8eb590c68e4aa2108bd7a9ab05b08fda

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

SetWindowTextA
WindowFromPoint
wvsprintfA
wsprintfW
KillTimer
DrawStateW
DefWindowProcA
FrameRect
GetUpdateRgn
CreateDialogIndirectParamW
SetWindowTextW
GetDoubleClickTime

gdi32

FillRgn
GetNearestColor
SetMapMode
EndDoc
CombineRgn
CreateRectRgnIndirect
CreateHalftonePalette
GetViewportOrgEx
OffsetRgn

comctl32

ImageList_Draw
ImageList_Create

kernel32

SetEvent
lstrcmpiA
CloseHandle
lstrcatA
GetComputerNameExW
LoadLibraryA
GetAtomNameA
CreateThread
SetCommTimeouts
FormatMessageW
GetTickCount
LocalReAlloc
WaitForMultipleObjectsEx

comdlg32

GetSaveFileNameA
FindTextW
GetOpenFileNameA

Exports

Exports

?WmRFijzNjMgkywcasEqiU@@YGNEN@Z

Sections

.text
Size: 17KB - Virtual size: 17KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.edata
Size: 1024B - Virtual size: 611B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 7KB - Virtual size: 167KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.xdata
Size: 81KB - Virtual size: 81KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 5KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8eb590c68e4aa2108bd7a9ab05b08fda

Headers

File Characteristics

Imports

user32

gdi32

comctl32

kernel32

comdlg32

Exports

Exports

Sections

.text Size: 17KB - Virtual size: 17KB

.edata Size: 1024B - Virtual size: 611B

.data Size: 7KB - Virtual size: 167KB

.pdata Size: 11KB - Virtual size: 11KB

.xdata Size: 81KB - Virtual size: 81KB

.rsrc Size: 5KB - Virtual size: 8KB

.reloc Size: 3KB - Virtual size: 2KB

.text
Size: 17KB - Virtual size: 17KB

.edata
Size: 1024B - Virtual size: 611B

.data
Size: 7KB - Virtual size: 167KB

.pdata
Size: 11KB - Virtual size: 11KB

.xdata
Size: 81KB - Virtual size: 81KB

.rsrc
Size: 5KB - Virtual size: 8KB

.reloc
Size: 3KB - Virtual size: 2KB