72045946d067e2bbf9d337fa179c877a

General

Target

72045946d067e2bbf9d337fa179c877a
Size

57KB
MD5

72045946d067e2bbf9d337fa179c877a
SHA1

2e4d0a9952fe7ecdd127f1a8f1f572deea91ae9a
SHA256

9c82dfa3dddc19ed4ecf36b9bd2a61b25dbe24dced3463b93ac0291644ff3d83
SHA512

b19099b250b378dc8e9de2e00552d69e3bbe58d5e5b33e324ea9165646ade8fab48cc095ce8878f9aa4e68d53f73d6d0375557032e807798ca33ae771c2cbb08
SSDEEP

1536:ZDpSwJmKlE1S8LQ5iMXAuezIaGsTyo4qnP:DYkE1jLQ5i4A7u0L4qnP

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
72045946d067e2bbf9d337fa179c877a

Files

72045946d067e2bbf9d337fa179c877a
.exe windows:4 windows x86 arch:x86

edd6a011006a8118ad0e49b1506ac95f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ClearCommBreak
EnumDateFormatsExW
EraseTape
ExitProcess
FatalAppExitW
GetDateFormatA
GetDefaultCommConfigA
GetFileTime
GetLogicalDriveStringsW
GetLongPathNameA
GetPrivateProfileStringW
GetProfileSectionA
GetShortPathNameW
GetStringTypeExW
GetTempFileNameW
LCMapStringW
OpenFileMappingW
PrepareTape
RemoveDirectoryA
SetProcessAffinityMask
SetSystemTime
SetTapePosition
SetupComm
SuspendThread
TryEnterCriticalSection
UnhandledExceptionFilter
lstrcmp

user32

BlockInput
CheckDlgButton
CopyAcceleratorTableW
CopyImage
CreateIconFromResourceEx
DefMDIChildProcA
DialogBoxParamA
GetDC
GetForegroundWindow
GetGUIThreadInfo
GetKeyboardState
GetMenuItemID
GetMenuItemInfoA
GetMenuState
GetParent
GetUpdateRect
GetUserObjectInformationW
IMPGetIMEW
IMPSetIMEW
ImpersonateDdeClientWindow
LoadImageW
LookupIconIdFromDirectory
SetPropA
SetWinEventHook
ToUnicodeEx
UnhookWindowsHookEx
UnloadKeyboardLayout
WindowFromPoint

gdi32

BeginPath
CloseMetaFile
CombineTransform
CopyMetaFileA
CreateEnhMetaFileA
EnumEnhMetaFile
EnumFontFamiliesA
EnumFontFamiliesW
FixBrushOrgEx
FlattenPath
GdiPlayScript
GetCharWidth32A
GetCharWidthFloatA
GetCharWidthFloatW
GetObjectA
GetTextMetricsW
GetWindowOrgEx
PolylineTo
SetBitmapDimensionEx
SetDeviceGammaRamp
SetPixelV
SetStretchBltMode
StartDocA
TextOutW

Sections

.text
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

edd6a011006a8118ad0e49b1506ac95f

Headers

File Characteristics

Imports

kernel32

user32

gdi32

Sections

.text Size: 512B - Virtual size: 4KB

.data Size: 8KB - Virtual size: 12KB

.idata Size: - Virtual size: 8KB

.rsrc Size: 1024B - Virtual size: 12KB

.text
Size: 512B - Virtual size: 4KB

.data
Size: 8KB - Virtual size: 12KB

.idata
Size: - Virtual size: 8KB

.rsrc
Size: 1024B - Virtual size: 12KB