738c50d43ed4154edac1ea5796ab8b1d

Sharing

Copy URL Twitter E-mail

General

Target

738c50d43ed4154edac1ea5796ab8b1d
Size

78KB
MD5

738c50d43ed4154edac1ea5796ab8b1d
SHA1

f0672fa34ff68179320332dcefb09852882d2849
SHA256

d8c6d387cf0334847ac3d5980bd96b6a6009a5fd0f70810480d86e681907506b
SHA512

96c7561cc73be22ee91cfcc7405d123dcdf13b5ee4af1b111302e371262f6ca44b622dc4b40756d08d23f9ca9f0ac9a2d5741569824b22b6d1931102376a4b93
SSDEEP

1536:04xNPAaZ16pZEAPzBppvsi83TB515AzvnyTyl0mNEe4d0LnalfAb:JP/Z1dAr5sDjBf5AzvnZ74O1

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
738c50d43ed4154edac1ea5796ab8b1d

Files

738c50d43ed4154edac1ea5796ab8b1d
.exe windows:4 windows x86 arch:x86

b4586e222890c621a15c624ea251abe0

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

GdiArtificialDecrementDriver
RemoveFontMemResourceEx
GetColorAdjustment
GdiPrinterThunk
DeleteObject
GetCharABCWidthsFloatW
RectVisible
EngCreateSemaphore
ScaleViewportExtEx
GetRelAbs
bMakePathNameW
EngUnicodeToMultiByteN
DeleteColorSpace
CreateRectRgnIndirect
GetWinMetaFileBits
CreateFontIndirectExA
CloseEnhMetaFile
GdiEntry16
GetETM
StartDocA
STROBJ_bEnumPositionsOnly
GetLogColorSpaceW
DeleteMetaFile
GetCharWidthW
GetETM
GdiConvertToDevmodeW
GdiGetPageCount

shell32

SHGetSpecialFolderPathA
StrRChrA
Shell_NotifyIconA
SHGetPathFromIDList
StrNCmpIW
DragFinish
FreeIconList
SHBrowseForFolderW
SHGetPathFromIDListW
Control_RunDLLA
SHGetFileInfoW
DuplicateIcon
SHGetSpecialFolderPathA
RealShellExecuteExA
CommandLineToArgvW
SHFileOperation
InternalExtractIconListW
SHGetSpecialFolderLocation
StrNCmpW
SHBindToParent
ShellExecuteA
DragQueryFileA
StrStrIW
StrStrA
DuplicateIcon

kernel32

SetConsoleCursorMode
SetConsoleTitleA
EndUpdateResourceW
CopyFileW
GetCPInfo
SetComputerNameA
GetTapeParameters
UTUnRegister
ResetWriteWatch
FindFirstFileExW
ExpandEnvironmentStringsW
SetConsoleFont
GlobalFindAtomW
GetLocaleInfoW
RegisterConsoleOS2
MulDiv
GetWriteWatch
BackupWrite
DosPathToSessionPathA
FindResourceExA

user32

DdeGetLastError
GetCapture
MonitorFromRect
IsCharLowerA
SetMenuContextHelpId
SystemParametersInfoW
InsertMenuItemA
UserHandleGrantAccess
User32InitializeImmEntryTable
GetThreadDesktop
SendMessageA
GetWindowRect
DdeAddData
GetMessageA
GetWindowTextLengthA
DialogBoxIndirectParamAorW
CharUpperA
SetKeyboardState
DdeGetQualityOfService
CreatePopupMenu
GetScrollBarInfo

Sections

.text
Size: 73KB - Virtual size: 92KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b4586e222890c621a15c624ea251abe0

Headers

DLL Characteristics

File Characteristics

Imports

gdi32

shell32

kernel32

user32

Sections

.text Size: 73KB - Virtual size: 92KB

.idata Size: 3KB - Virtual size: 4KB

.rsrc Size: 1024B - Virtual size: 4KB

.text
Size: 73KB - Virtual size: 92KB

.idata
Size: 3KB - Virtual size: 4KB

.rsrc
Size: 1024B - Virtual size: 4KB