985f69c8dbb9c9e2f4fba0d5789ff786

Sharing

Copy URL Twitter E-mail

General

Target

985f69c8dbb9c9e2f4fba0d5789ff786
Size

170KB
MD5

985f69c8dbb9c9e2f4fba0d5789ff786
SHA1

d4eede9cbf041eeb091c4f284f85d43882a5c9a1
SHA256

8424a30d7e67fb095a47cc12d8c535eed6d081dca33f7d50eaec73bdc1b5575d
SHA512

73f72eb4ecbcee255fedd03296b9e16f0c2bcef4120162b34eefe965d3f79704566f7ddcceb82a475b3b6fae148226d9a7e57be79fcee24317f7708b8e6870a6
SSDEEP

3072:THL0xB2A8GPaO+mk/IfEIzF64ZeaSMiUNkXUxefQmVjS6L3ry1Tn:f+Bx8c+BI8IzFRQaSjUNkzfQm53e

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
985f69c8dbb9c9e2f4fba0d5789ff786

Files

985f69c8dbb9c9e2f4fba0d5789ff786
.exe windows:4 windows x86 arch:x86

fc22274dd731620199eae5646e42d285

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

gdi32

CreateCompatibleDC
SetPixel
CreatePenIndirect
CopyEnhMetaFileA
CreateDIBitmap
BitBlt
CreateDIBSection
CreateCompatibleBitmap
GetClipBox

kernel32

VirtualAlloc
GetACP
GetCommandLineW
ExitThread
GetCommandLineA
LoadLibraryExA
LoadLibraryA
lstrlenA
ExitProcess
GetProcAddress
GetModuleHandleA
IsBadHugeReadPtr

msvcrt

sqrt
abs
atol
mbstowcs
wcschr
malloc

user32

GetCapture
MapVirtualKeyA
CharLowerA

Sections

.text
Size: 19KB - Virtual size: 18KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 139KB - Virtual size: 138KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

RES08
Size: 1024B - Virtual size: 902B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

RES83
Size: 1024B - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

RES41
Size: 1024B - Virtual size: 983B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

RES07
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

RES61
Size: 1024B - Virtual size: 715B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

RES33
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

RES13
Size: 512B - Virtual size: 61B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

RES90
Size: 512B - Virtual size: 324B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

fc22274dd731620199eae5646e42d285

Headers

File Characteristics

Imports

gdi32

kernel32

msvcrt

user32

Sections

.text Size: 19KB - Virtual size: 18KB

.data Size: 139KB - Virtual size: 138KB

RES08 Size: 1024B - Virtual size: 902B

RES83 Size: 1024B - Virtual size: 36KB

RES41 Size: 1024B - Virtual size: 983B

RES07 Size: 1KB - Virtual size: 1KB

RES61 Size: 1024B - Virtual size: 715B

RES33 Size: 2KB - Virtual size: 1KB

RES13 Size: 512B - Virtual size: 61B

RES90 Size: 512B - Virtual size: 324B

.rsrc Size: 2KB - Virtual size: 2KB

.text
Size: 19KB - Virtual size: 18KB

.data
Size: 139KB - Virtual size: 138KB

RES08
Size: 1024B - Virtual size: 902B

RES83
Size: 1024B - Virtual size: 36KB

RES41
Size: 1024B - Virtual size: 983B

RES07
Size: 1KB - Virtual size: 1KB

RES61
Size: 1024B - Virtual size: 715B

RES33
Size: 2KB - Virtual size: 1KB

RES13
Size: 512B - Virtual size: 61B

RES90
Size: 512B - Virtual size: 324B

.rsrc
Size: 2KB - Virtual size: 2KB