85fbe1d23b15794e0d876cc84041f34a

General

Target

85fbe1d23b15794e0d876cc84041f34a
Size

10KB
MD5

85fbe1d23b15794e0d876cc84041f34a
SHA1

fc2aa5b4cea616568b67132fe7f9afee41d9f486
SHA256

0d7bafc3a8f37ff9d6f4e31d1966e4dc1a6287b019b056e375f7229375909a23
SHA512

ee771ecbbd859134a90f05e3cf904de353107085331b81cc624f38d931c8fce9973ad032917183995ee3b79817ac78cf88ae1e423e9bbdb7beab50536625b993
SSDEEP

192:6ymllTwllCp7OeK5Z03cXEHPx4mL24g5/19f2cNX5DgS1BlfOnnIXz1/Zqymj+BU:+VaCOB5Z0ZPxONB2chd/RGnwUymC0

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
85fbe1d23b15794e0d876cc84041f34a

Files

85fbe1d23b15794e0d876cc84041f34a
.exe windows:4 windows x86 arch:x86

dd8068f35625718effcce1df8b82a9f7

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

BackupSeek
CreateNamedPipeW
CreateWaitableTimerA
ExitProcess
FindNextFileW
FindResourceA
FreeLibrary
GetLongPathNameW
GetProfileSectionA
GetThreadLocale
GetThreadPriority
GetUserDefaultLangID
GlobalAlloc
GlobalDeleteAtom
HeapValidate
InterlockedIncrement
IsBadHugeWritePtr
IsBadStringPtrA
LocalFlags
SetConsoleMode
SetCurrentDirectoryA
SetThreadPriorityBoost
SignalObjectAndWait
TerminateThread
TlsAlloc
WriteConsoleInputW
WriteConsoleOutputAttribute

user32

BringWindowToTop
CharLowerBuffW
CreateIconFromResource
DdeDisconnectList
DdeGetLastError
DefMDIChildProcA
DlgDirSelectExA
GetClassInfoW
GetDlgItemTextW
GetMessagePos
GetMessageW
GetMonitorInfoW
GetSystemMetrics
GetUserObjectInformationW
GetWindowLongW
GetWindowRect
HiliteMenuItem
RegisterClipboardFormatA
RegisterWindowMessageW
ReleaseDC
SetParent
SetProcessDefaultLayout
SetPropA
SetTimer
UserClientDllInitialize
VkKeyScanExA

gdi32

Arc
ColorCorrectPalette
CombineRgn
CopyEnhMetaFileA
CreateEnhMetaFileW
CreatePolygonRgn
CreateSolidBrush
DeleteColorSpace
EndPage
FillPath
FixBrushOrgEx
GetDIBits
GetICMProfileW
GetLogColorSpaceW
GetMiterLimit
GetNearestPaletteIndex
GetOutlineTextMetricsW
GetTextColor
PaintRgn
PatBlt
Rectangle
RemoveFontResourceW
RestoreDC
ScaleViewportExtEx
SetBitmapBits
SetBoundsRect
SetICMProfileA
SetLayout
SetPixelFormat
UpdateColors

Sections

.text
Size: 512B - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

dd8068f35625718effcce1df8b82a9f7

Headers

File Characteristics

Imports

kernel32

user32

gdi32

Sections

.text Size: 512B - Virtual size: 16KB

.data Size: 8KB - Virtual size: 16KB

.rdata Size: - Virtual size: 12KB

.rsrc Size: - Virtual size: 12KB

.text
Size: 512B - Virtual size: 16KB

.data
Size: 8KB - Virtual size: 16KB

.rdata
Size: - Virtual size: 12KB

.rsrc
Size: - Virtual size: 12KB