97ef0c8caf18c26bd7ae39aa7e6f9090

Sharing

Copy URL

Twitter E-mail

General

Target

97ef0c8caf18c26bd7ae39aa7e6f9090
Size

85KB
MD5

97ef0c8caf18c26bd7ae39aa7e6f9090
SHA1

83c09ad41269b98f9409a1722340e21d26e3f61d
SHA256

7ab680556936804cfa687fbd6e0d2e408855dd389f0de2a34d253a10d3d2b1be
SHA512

8215414d0612752fc2da69bd003038d075140665652b228ec25176f6a6e6cb790a48e6ebc695dc8f56f1dbe4a33c62a251deeb4a570f4b7c5fb2728f5fa22eff
SSDEEP

1536:95UxcUH4f+ly1pb7o9l5Mxdmt83tlyANm2Sb+e6jiFTEI:9GxcUH4GlQb89l5MxQt83tlymi+e3

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
97ef0c8caf18c26bd7ae39aa7e6f9090

Files

97ef0c8caf18c26bd7ae39aa7e6f9090
.exe windows:5 windows x86 arch:x86

f3d2ddbd8bc15bf17a41955294eb1a0e

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

Y:\DnijJVgd\pitWxRX\ctoerrwx\RtpjVeb.pdb

Imports

msvcrt

wcscpy
strspn
isdigit
fflush

user32

SetWindowLongW
GetParent
InSendMessageEx
GetMenuItemRect
GetUpdateRect
CallWindowProcW
RedrawWindow
GetWindowContextHelpId
SetUserObjectInformationW
GetMessageExtraInfo
IsWindowVisible
GetDesktopWindow
GetDlgItemInt
WaitForInputIdle

shlwapi

PathCanonicalizeA
ChrCmpIA

kernel32

IsBadWritePtr
GetComputerNameExA
lstrcpyA
LoadResource
GetThreadPriority
GetModuleHandleExW
ExitProcess

ntdll

memset

comctl32

ImageList_GetIconSize
CreatePropertySheetPageA
ImageList_Destroy

gdi32

CreateDCW
GetROP2
GetPixel
GetTextColor
SetDIBColorTable

Exports

Exports

?obzhFWCqoOAe@@YGFEPAM@Z

Sections

.text
Size: 512B - Virtual size: 512B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.code
Size: 24KB - Virtual size: 23KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.edata
Size: 512B - Virtual size: 512B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 86KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 73KB - Virtual size: 73KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f3d2ddbd8bc15bf17a41955294eb1a0e

Headers

File Characteristics

PDB Paths

Imports

msvcrt

user32

shlwapi

kernel32

ntdll

comctl32

gdi32

Exports

Exports

Sections

.text Size: 512B - Virtual size: 512B

.code Size: 24KB - Virtual size: 23KB

.edata Size: 512B - Virtual size: 512B

.data Size: 6KB - Virtual size: 86KB

.rdata Size: 73KB - Virtual size: 73KB

.rsrc Size: 2KB - Virtual size: 1KB

.reloc Size: 1KB - Virtual size: 1KB

.text
Size: 512B - Virtual size: 512B

.code
Size: 24KB - Virtual size: 23KB

.edata
Size: 512B - Virtual size: 512B

.data
Size: 6KB - Virtual size: 86KB

.rdata
Size: 73KB - Virtual size: 73KB

.rsrc
Size: 2KB - Virtual size: 1KB

.reloc
Size: 1KB - Virtual size: 1KB