88fdb657b2d6bc14958af20e8d6ec5d1

Sharing

Copy URL Twitter E-mail

General

Target

88fdb657b2d6bc14958af20e8d6ec5d1
Size

141KB
MD5

88fdb657b2d6bc14958af20e8d6ec5d1
SHA1

9b922fbfd0646cddd3ef7d66831f57e0d055c0a9
SHA256

41d4485be100df367dd1450574ebf6eeae089755148897167a007ef4b6019281
SHA512

e4bb811112602f22ba8a86169788a59aa1262f9ef78dfd45b87c6f11bfe9561ff328b9042b20051e4de114cf4c2a270c35550925a5f70e574c926f91e85e24d9
SSDEEP

3072:M5f6a8UH3b8wxiJfU1UoY8cN06RQuoPm84fT3y:wfcJEa8xYNenZPKfT

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
88fdb657b2d6bc14958af20e8d6ec5d1

Files

88fdb657b2d6bc14958af20e8d6ec5d1
.exe windows:4 windows x86 arch:x86

374d848d331ebc4ecaef57cfc73d3fcf

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetWindowTextA
OemToCharA
EndDialog
DestroyIcon
PostMessageA
GetIconInfo
GetLastActivePopup
DefMDIChildProcA
GetKeyboardState
FillRect
UnregisterClassA
EnableWindow
SetWindowPos
IsWindowEnabled
CallNextHookEx
IsChild
GetActiveWindow
SetTimer
TranslateMessage
GetDC
DrawTextA
EnumWindows
SetWindowTextA
InflateRect
FrameRect
EnumChildWindows
SetScrollPos
IsWindowUnicode
MapWindowPoints
UpdateWindow
DefWindowProcA
ShowScrollBar
IntersectRect
GetSysColor
WaitMessage
ScrollWindow
GetDesktopWindow
CreateMenu
GetFocus
GetClassInfoA
SendMessageA
SetCapture
SetScrollRange
OffsetRect
DispatchMessageA
GetScrollPos
GetScrollInfo
DeleteMenu
IsDlgButtonChecked
DrawAnimatedRects
CreateIcon
ShowWindow
GetWindowRect
GetWindowThreadProcessId
TrackPopupMenu
GetClientRect
GetMenu
EndPaint
SetScrollInfo
IsMenu
GetMenuItemID
WindowFromPoint
IsDialogMessageW
UnhookWindowsHookEx

version

VerFindFileA

kernel32

LoadLibraryExA
GetCurrentThreadId
WaitForSingleObject
GetCommandLineA
lstrcpynA
FindClose
VirtualAlloc
SetFilePointer
WriteFile
GetVersionExA
WideCharToMultiByte
GetUserDefaultLCID
ReadFile
VirtualAllocEx
LoadLibraryA
GetCommandLineW
SetErrorMode
GetVersion
GetACP
ExitProcess
InitializeCriticalSection
VirtualQuery

Exports

Exports

ryPIzuS@12
aRMtQk7eJw76@8

Sections

.text
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 104KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.cdata
Size: 105KB - Virtual size: 104KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.datas
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bdata
Size: 512B - Virtual size: 100B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

374d848d331ebc4ecaef57cfc73d3fcf

Headers

File Characteristics

Imports

user32

version

kernel32

Exports

Exports

Sections

.text Size: 11KB - Virtual size: 11KB

.data Size: 12KB - Virtual size: 104KB

.cdata Size: 105KB - Virtual size: 104KB

.datas Size: 2KB - Virtual size: 2KB

.bdata Size: 512B - Virtual size: 100B

.rsrc Size: 8KB - Virtual size: 8KB

.text
Size: 11KB - Virtual size: 11KB

.data
Size: 12KB - Virtual size: 104KB

.cdata
Size: 105KB - Virtual size: 104KB

.datas
Size: 2KB - Virtual size: 2KB

.bdata
Size: 512B - Virtual size: 100B

.rsrc
Size: 8KB - Virtual size: 8KB