9702b05215589fea986672da600dae2e

General

Target

9702b05215589fea986672da600dae2e
Size

276KB
MD5

9702b05215589fea986672da600dae2e
SHA1

0f377548191e3d4d4887802ba18a1ce048d2222b
SHA256

bd2079a229d75bb16479d4581a4ce87c3dbc761e190777fb61e2480d2fcbc4eb
SHA512

4fcb9855f6ff0e975dba921b991a2d5a3d87f4459493be69bff17db2a262a0f93ea879593dacd8867e9944f635c4379382d1b26e61a2be47cbde89dd0ba87386
SSDEEP

3072:0QOq8z2kC836wCDdOFLfv5dzpHf/mlEl0GzWTo+WsXlKpqaPBWz7vvZM9dh69GuG:iVJRjpHPSt3YsXZM9bmxc

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
9702b05215589fea986672da600dae2e

Files

9702b05215589fea986672da600dae2e
.exe windows:4 windows x86 arch:x86

01d4b3ee624691139239dac837d75179

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

shell32

SHFileOperationA
SHGetDesktopFolder

gdi32

GetClipBox
CopyEnhMetaFileA
GetDIBits
GetDCOrgEx
SelectPalette
SelectObject
BitBlt
CreateCompatibleDC

user32

GetCursor
RegisterClassA
GetKeyNameTextA
CharLowerBuffA
GetDlgItem
MessageBoxA
GetDC
GetForegroundWindow
TranslateMessage
GetClassInfoA
IsWindowVisible
IsRectEmpty
WindowFromPoint
RemovePropA
DestroyCursor
GetClientRect
IsWindow
DrawEdge
BeginPaint
SetClipboardData
GetMenuItemID
IsWindowUnicode
SystemParametersInfoA
GetSysColor

comctl32

ImageList_Remove
ImageList_DragShowNolock
ImageList_DrawEx

version

GetFileVersionInfoA
GetFileVersionInfoSizeA

kernel32

GetDateFormatA
GetLastError
GetVersionExA
GetThreadLocale
lstrlenA
FreeLibrary
GetProcAddress
VirtualAlloc
VirtualAllocEx
EnumCalendarInfoA
ExitThread
GetFileType
lstrcatA
MoveFileExA
GlobalAlloc
GetCommandLineA
GetModuleHandleA
WaitForSingleObject
lstrcmpA

oleaut32

SafeArrayPtrOfIndex
SysFreeString
SafeArrayGetUBound
SafeArrayCreate
SafeArrayGetElement
SysAllocStringLen
SysReAllocStringLen
GetErrorInfo

ole32

GetHGlobalFromStream
CoCreateFreeThreadedMarshaler
CoGetMalloc
CreateBindCtx
WriteClassStm

Sections

.text
Size: 36KB - Virtual size: 36KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 234KB - Virtual size: 234KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

01d4b3ee624691139239dac837d75179

Headers

File Characteristics

Imports

shell32

gdi32

user32

comctl32

version

kernel32

oleaut32

ole32

Sections

.text Size: 36KB - Virtual size: 36KB

DATA Size: 234KB - Virtual size: 234KB

.edata Size: 4KB - Virtual size: 3KB

.text
Size: 36KB - Virtual size: 36KB

DATA
Size: 234KB - Virtual size: 234KB

.edata
Size: 4KB - Virtual size: 3KB