751f86d2e478387fe0a507a1e6fd7b2d

General

Target

751f86d2e478387fe0a507a1e6fd7b2d
Size

138KB
MD5

751f86d2e478387fe0a507a1e6fd7b2d
SHA1

ae5f6a1eb37a1bc0aee563204aa15a4ae9af5e97
SHA256

09a68a5608f2ea7944a69c85ddfdb7f7e3fe457c8bb5beee99d471952de5821a
SHA512

5c6d3a3f0aa336aaa527d094daeaea078b98adbb90097e81e9792e3a08cc7fa657fdc807e3136a4ff46d573922b66a8290d27d87394905fd3d187cecfeb1b4a6
SSDEEP

3072:BwSOHbH0oaAR16wpQ5VKgmsEkq6MvI4zKBOWBSvr:BIHYon16wmKgfLq6Mv6BzA

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

Processes:

resource
751f86d2e478387fe0a507a1e6fd7b2d

Files

751f86d2e478387fe0a507a1e6fd7b2d
.exe windows:4 windows x86 arch:x86

2e06f2f6ccb3a52aab6d7878e5fcdab1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

AddAtomW
AreFileApisANSI
BuildCommDCBAndTimeoutsW
EnumSystemLocalesA
EnumSystemLocalesW
ExitProcess
FindFirstChangeNotificationW
FlushConsoleInputBuffer
GetExitCodeThread
GetFileAttributesA
GetModuleHandleW
GetOverlappedResult
GetPrivateProfileSectionNamesA
GetTapeParameters
GlobalAlloc
Heap32Next
HeapDestroy
InterlockedIncrement
MoveFileExA
OpenFileMappingA
ReadFileScatter
SetCommTimeouts
SetFileAttributesW
SetThreadIdealProcessor
SignalObjectAndWait
TlsSetValue
TransmitCommChar
WritePrivateProfileSectionA
WritePrivateProfileStructW
lstrcpyA

user32

AdjustWindowRect
BroadcastSystemMessageA
EnumDisplayDevicesA
GetDesktopWindow
GetLastActivePopup
GetOpenClipboardWindow
GetScrollPos
GetShellWindow
GetSysColorBrush
IsCharLowerA
IsWindow
LoadMenuIndirectA
LoadMenuIndirectW
LoadStringA
MsgWaitForMultipleObjects
OpenWindowStationW
RegisterLogonProcess
SetClipboardData
SetRectEmpty
UnregisterHotKey
VkKeyScanExA
VkKeyScanW
wsprintfW

gdi32

CreateDIBitmap
CreateFontW
Ellipse
EndPage
EnumFontsW
GetBkMode
GetCharABCWidthsW
GetCharWidth32W
GetEnhMetaFileW
GetICMProfileA
GetLayout
GetLogColorSpaceW
GetMiterLimit
GetTextExtentPointA
OffsetClipRgn
PlayMetaFile
PolyPolyline
RectInRegion
SaveDC
ScaleViewportExtEx
SetAbortProc
SetBkColor
SetBkMode
SetEnhMetaFileBits
SetWinMetaFileBits
SetWindowExtEx
StartDocW
StrokeAndFillPath

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 108KB - Virtual size: 112KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 20KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2e06f2f6ccb3a52aab6d7878e5fcdab1

Headers

File Characteristics

Imports

kernel32

user32

gdi32

Sections

.text Size: 4KB - Virtual size: 4KB

.data Size: 108KB - Virtual size: 112KB

.rsrc Size: 20KB - Virtual size: 68KB

.text
Size: 4KB - Virtual size: 4KB

.data
Size: 108KB - Virtual size: 112KB

.rsrc
Size: 20KB - Virtual size: 68KB