98dcb5a270b7223c07c53bf2b70872ff

General

Target

98dcb5a270b7223c07c53bf2b70872ff
Size

22KB
MD5

98dcb5a270b7223c07c53bf2b70872ff
SHA1

dd58a243c31db1ebeb9a5047b8a14ce6ea0fb0ec
SHA256

73e999c5fd3bed1ff5633005fd32f5b190ff0f76224a056747fdceaa0ee87bf7
SHA512

c9e5312b6bd42b12098637301b82900f9b03d6fa37a000d53ba0d4af5f34aeb1a9d07f9a4f0ecf5ee2b4f3eec83793eda479ea5cab0381ae182b91ab98fc76f7
SSDEEP

384:TW3EpLVLadA6ORZC+unZ4otindn6idEFmr4ylck9lJ/a5dzWJrd1kI:TW3EpLVLadA6g4Zvtid6KXr1lc0lU5dq

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
98dcb5a270b7223c07c53bf2b70872ff

Files

98dcb5a270b7223c07c53bf2b70872ff
.exe windows:4 windows x86 arch:x86

d37521a94142174b1126dafbd41f86a2

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCurrentProcess
lstrcatA
GetACP
GetModuleFileNameA
SetHandleCount
MultiByteToWideChar
lstrcpynA
GetStringTypeW
GetOEMCP
TerminateProcess
GetStartupInfoA
lstrcpyA
LCMapStringW
GetFileType
GetCommandLineA
CreateFileA
GetVersion
GetStdHandle
WriteFile
LCMapStringA
lstrcpynW
GetStringTypeA

user32

GetDlgItem
EndDialog
GetMenu
GetDC
DrawTextA
GetWindowTextA
LoadMenuA
GetWindowTextLengthA
DrawIcon
DrawTextW
GetCursor
CopyRect
CopyIcon
InsertMenuA
IsWindow
LoadCursorA
DialogBoxParamA
CreateIcon
CloseWindow
CopyImage
DrawIconEx
IsMenu
GetFocus
DialogBoxParamW

comctl32

ImageList_AddIcon
CreateStatusWindow
CreateStatusWindowW
DllGetVersion
DrawStatusTextW
ImageList_Copy
CreateMappedBitmap
ImageList_Create
ImageList_EndDrag
ImageList_LoadImageW

advapi32

RegOpenKeyExA
RegCreateKeyA
RegQueryValueExW
RegEnumKeyExA
RegQueryValueW
RegEnumValueW
RegEnumKeyExW
RegCreateKeyExW
RegQueryValueExA
RegDeleteValueA
RegDeleteKeyA

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 17.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d37521a94142174b1126dafbd41f86a2

Headers

File Characteristics

Imports

kernel32

user32

comctl32

advapi32

Sections

.text Size: 3KB - Virtual size: 2KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 16KB - Virtual size: 17.5MB

.text
Size: 3KB - Virtual size: 2KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 16KB - Virtual size: 17.5MB