a36f9a51b25c772b0bebb776c31f2179b4bf9ad4180f3ceb15e51d9b1a5b2970

Sharing

Copy URL Twitter E-mail

General

Target

a36f9a51b25c772b0bebb776c31f2179b4bf9ad4180f3ceb15e51d9b1a5b2970
Size

1.5MB
MD5

a9224c3a9a637c903297a22b1da9980f
SHA1

e2861b776e43a430367c5d7b03d69f0a354faa58
SHA256

a36f9a51b25c772b0bebb776c31f2179b4bf9ad4180f3ceb15e51d9b1a5b2970
SHA512

d112f8ecface3eda916198ab454f865ff5cf043766db8017ae7b95c6b6d46ddc2615f9d1d56e7dcb7c9f15c02abb33bab9db57a74e95a65f7dfa7119fe645421
SSDEEP

49152:D5dL6k1GXLe2ko9zhnDG9+Lj7MGDoL9/nbb9ldAOfWgMH:ldLQq2BB5oOjImo9b9pWgMH

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a36f9a51b25c772b0bebb776c31f2179b4bf9ad4180f3ceb15e51d9b1a5b2970

Files

a36f9a51b25c772b0bebb776c31f2179b4bf9ad4180f3ceb15e51d9b1a5b2970
.dll windows:5 windows x86 arch:x86

7f5247f025d7e642a6cc16e6b0034697

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

advapi32

EnumDependentServicesW

comctl32

ImageList_GetIconSize
PropertySheetA

kernel32

IsDebuggerPresent
SetUnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
RtlUnwind
UnhandledExceptionFilter
GetLargestConsoleWindowSize
TlsAlloc
GetUserDefaultLangID
GetModuleFileNameW
GetModuleHandleW
GetModuleFileNameA
GetExitCodeProcess

winmm

timeBeginPeriod

ole32

OleFlushClipboard

setupapi

SetupDiEnumDeviceInfo

gdi32

LineTo
ExtEscape
GetPixelFormat
SetMapMode
Ellipse
SetSystemPaletteUse
OffsetClipRgn
CopyEnhMetaFileA

version

VerQueryValueA

winscard

SCardCancel

user32

TranslateMDISysAccel
ShowWindow
UpdateWindow
GetActiveWindow
IsCharLowerW
InternalGetWindowText
VkKeyScanExA
BringWindowToTop

Exports

Exports

SwanehstiIllqdd

Sections

.text
Size: 1.4MB - Virtual size: 1.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 80KB - Virtual size: 82KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 4KB - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 832B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 32KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7f5247f025d7e642a6cc16e6b0034697

Headers

File Characteristics

Imports

advapi32

comctl32

kernel32

winmm

ole32

setupapi

gdi32

version

winscard

user32

Exports

Exports

Sections

.text Size: 1.4MB - Virtual size: 1.4MB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 80KB - Virtual size: 82KB

.CRT Size: 4KB - Virtual size: 4B

.rsrc Size: 4KB - Virtual size: 832B

.reloc Size: 32KB - Virtual size: 29KB

.text
Size: 1.4MB - Virtual size: 1.4MB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 80KB - Virtual size: 82KB

.CRT
Size: 4KB - Virtual size: 4B

.rsrc
Size: 4KB - Virtual size: 832B

.reloc
Size: 32KB - Virtual size: 29KB