98d6e4d313ad9a980c3d2b9b9f52ae1d

Sharing

Copy URL Twitter E-mail

General

Target

98d6e4d313ad9a980c3d2b9b9f52ae1d
Size

142KB
MD5

98d6e4d313ad9a980c3d2b9b9f52ae1d
SHA1

90f6318e2d8488578b739d57404a2586ecfb6411
SHA256

dd2cb866ad441d53f68cc0b3ba2c5cb0b191c3a310a410b08b6fc14b1ad04fe7
SHA512

5c474cb4108c145c9a87be8e8eca42b117b2fe3e829ce81a98f6543676a12f7ae67597f5efc05b78cd16e1cf1100a6b323d5704d232aa27280b9b49709267978
SSDEEP

3072:F/V/2imMBCVMKBigZp66WMeJP92tUsIrsb:tVm/JH6LM28t

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
98d6e4d313ad9a980c3d2b9b9f52ae1d

Files

98d6e4d313ad9a980c3d2b9b9f52ae1d
.exe windows:4 windows x86 arch:x86

4ae52dc3035da984e646135060d7599c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLocaleInfoA
CompareStringA
FreeResource
RaiseException
GetCommandLineA
LocalFree
LockResource
MulDiv
FormatMessageA
CloseHandle
LoadLibraryA
GetFileType
lstrcpynA
VirtualAllocEx
LocalAlloc
GetCurrentThreadId
CreateThread
GetStringTypeW
GetCurrentProcessId
GetModuleFileNameA
ExitProcess
FreeLibrary
LoadLibraryExA

user32

DrawAnimatedRects
IsWindowEnabled
SetWindowLongA
GetScrollPos
GetDC
DrawFrameControl
GetDlgItem
IsDialogMessageA
OemToCharA
ShowOwnedPopups
EnumWindows
GetCursorPos
CreateIcon
GetWindowRect
GetDCEx
AdjustWindowRectEx
GetClientRect
EnableScrollBar
SetMenu
GetWindow
GetKeyboardLayout
SetRect
CharUpperBuffA
GetActiveWindow
InflateRect
EndDialog
EnableWindow
DrawMenuBar
SetTimer
DrawEdge
GetWindowThreadProcessId
CreateMenu
GetMenuState
LoadCursorA
RedrawWindow
IsDialogMessageW
MsgWaitForMultipleObjects
GetMenu
SetScrollPos
SendMessageW
SetForegroundWindow
SetPropA
GetCapture
GetSysColorBrush
GetKeyboardLayoutNameA
GetCursor
OpenIcon
GetMenuItemCount
GetClipboardData
GetClassNameA
CreateWindowExA
GetMenuStringA
GetScrollInfo
SetWindowTextA
MapWindowPoints
ShowScrollBar
IsDlgButtonChecked
ActivateKeyboardLayout
GetLastActivePopup
GetSysColor
GetFocus

shell32

Shell_NotifyIconA
SHGetDiskFreeSpaceA
DragQueryFileA
SHGetSpecialFolderLocation
Shell_NotifyIconW

gdi32

GetTextColor

Exports

Exports

gk_EWAOZmk0

Sections

1
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

2
Size: 10KB - Virtual size: 118KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

3
Size: 110KB - Virtual size: 109KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

4
Size: 1024B - Virtual size: 628B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

5
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

6
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4ae52dc3035da984e646135060d7599c

Headers

File Characteristics

Imports

kernel32

user32

shell32

gdi32

Exports

Exports

Sections

1 Size: 9KB - Virtual size: 9KB

2 Size: 10KB - Virtual size: 118KB

3 Size: 110KB - Virtual size: 109KB

4 Size: 1024B - Virtual size: 628B

5 Size: 1KB - Virtual size: 1KB

6 Size: 8KB - Virtual size: 8KB

1
Size: 9KB - Virtual size: 9KB

2
Size: 10KB - Virtual size: 118KB

3
Size: 110KB - Virtual size: 109KB

4
Size: 1024B - Virtual size: 628B

5
Size: 1KB - Virtual size: 1KB

6
Size: 8KB - Virtual size: 8KB