737a20e43991fec29dc687cfff37f39e

General

Target

737a20e43991fec29dc687cfff37f39e
Size

48KB
MD5

737a20e43991fec29dc687cfff37f39e
SHA1

32b51abb1155a33956db8e285503d1cd2204cb01
SHA256

cd68923f566119d70b2e1e5689a520a9ae802af1fcd37b4080b9c2891babd54f
SHA512

d3b8273cdebf9be649d8bed2c474cb9b79c7ed89fa63ba628157816b31bb1de2512f1b30944101f0e3dc2e1c07a887dffdf03e024abe88c329563c08142ee163
SSDEEP

768:RekpfhM3ZrSnue04SbpwKeRixL1D6YLC0WGwCnnV3q2H6rPfS3Mg5UGji+v3UYJe:H9hM5MH04SlwKTxpDR6yVtkSP5U83Kf

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
737a20e43991fec29dc687cfff37f39e

Files

737a20e43991fec29dc687cfff37f39e
.exe windows:5 windows x86 arch:x86

fd1afd1291b3b945fb0bd1afee44416b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

GetBkMode
ScaleWindowExtEx
CreatePenIndirect
GetSystemPaletteUse
EnumFontsW

kernel32

HeapCreate
GetSystemWindowsDirectoryW
ExitProcess
OpenSemaphoreW
FormatMessageW
GetModuleHandleExW
DisconnectNamedPipe

msvcrt

iswxdigit
wcstod
gmtime
gets

shlwapi

StrIsIntlEqualW
PathCanonicalizeA
ChrCmpIW
PathCommonPrefixW

ntdll

memset

user32

GetDesktopWindow
CharToOemBuffA
GetMessageExtraInfo
GetParent
GetWindowTextA
GetActiveWindow
GetSubMenu
CheckRadioButton
GetDlgItemInt
GetWindowContextHelpId
SystemParametersInfoA
CharNextExA

Exports

Exports

?eagjkwtdGaTXZlcjixtstk@@YGGE_N@Z

Sections

.text
Size: 512B - Virtual size: 512B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.code
Size: 25KB - Virtual size: 25KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 512B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

fd1afd1291b3b945fb0bd1afee44416b

Headers

File Characteristics

Imports

gdi32

kernel32

msvcrt

shlwapi

ntdll

user32

Exports

Exports

Sections

.text Size: 512B - Virtual size: 512B

.data Size: 11KB - Virtual size: 11KB

.code Size: 25KB - Virtual size: 25KB

.rdata Size: 5KB - Virtual size: 5KB

.edata Size: 512B - Virtual size: 512B

.rsrc Size: 2KB - Virtual size: 4KB

.reloc Size: 1KB - Virtual size: 1KB

.text
Size: 512B - Virtual size: 512B

.data
Size: 11KB - Virtual size: 11KB

.code
Size: 25KB - Virtual size: 25KB

.rdata
Size: 5KB - Virtual size: 5KB

.edata
Size: 512B - Virtual size: 512B

.rsrc
Size: 2KB - Virtual size: 4KB

.reloc
Size: 1KB - Virtual size: 1KB