99aad8aeea578014c68d9f0fe5c86aa6

Sharing

Copy URL Twitter E-mail

General

Target

99aad8aeea578014c68d9f0fe5c86aa6
Size

234KB
MD5

99aad8aeea578014c68d9f0fe5c86aa6
SHA1

5748842dbd9344129b32fca86849b4387ef6e5d5
SHA256

e54138dfba3468aef5e35b67c96bcb352c748ca7617d98af03b9d1e5aac1660d
SHA512

325c5095452bd987ede7246f4b248827e9fb943b257ef2dcde360f22de107d55f9e4fbff125fcb9d633c9b73a28aca56d3e370fe37a37aa64598ce6e26435a1d
SSDEEP

6144:sq5eHU/dQZguwrvOqtXyswR8a3KdKjAhymQi:sxnZ1wVvwR8a6nd

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
99aad8aeea578014c68d9f0fe5c86aa6

Files

99aad8aeea578014c68d9f0fe5c86aa6
.exe windows:5 windows x86 arch:x86

35fed363da7a9e488a864d3533a690cf

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

GetDIBits
SetBitmapBits
SetTextAlign
GetMapMode
CreateEllipticRgnIndirect
SetBkMode
ScaleWindowExtEx
SelectClipRgn
RestoreDC
OffsetRgn
CreateICW
GetTextCharsetInfo
PolyBezier
CreatePenIndirect
SetTextColor
Rectangle
GetTextExtentPointA

kernel32

IsBadReadPtr
FreeResource
FormatMessageA
SetupComm
GetSystemWindowsDirectoryW
TlsFree
ConnectNamedPipe
GlobalMemoryStatus
MoveFileW
SetHandleInformation
SetThreadExecutionState
lstrcpynW
GlobalAddAtomW
CreateThread
ConvertDefaultLocale
FindClose
GetTimeFormatA

user32

CharUpperW
IsCharUpperA
GetWindowLongA
CharLowerW
ClipCursor
SetWindowRgn
CallWindowProcA
SetWindowPlacement
PostMessageA
DestroyAcceleratorTable
LoadImageW
TrackPopupMenuEx
LoadAcceleratorsW
MapVirtualKeyW
GetSysColorBrush
GetWindowTextA
CreatePopupMenu
GetClassInfoA
SetWindowLongW
SetRectEmpty
CharNextW
CreateDialogParamW
GetScrollInfo
IsCharLowerA
ScrollWindow
DestroyIcon
GetMenuItemID
DeleteMenu
SetCursorPos
OffsetRect
SetScrollRange
CharUpperBuffA
IsDialogMessageA
SendMessageTimeoutA
GetKeyState
SetSysColors

Exports

Exports

?IUDFijfjkKLJFOIUofiuOFUiofOFYU@@YGKEPA_WG@Z

Sections

.text
Size: 214KB - Virtual size: 213KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.vdt
Size: - Virtual size: 107KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.vsctn
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

35fed363da7a9e488a864d3533a690cf

Headers

File Characteristics

Imports

gdi32

kernel32

user32

Exports

Exports

Sections

.text Size: 214KB - Virtual size: 213KB

.rdata Size: 11KB - Virtual size: 11KB

.data Size: 3KB - Virtual size: 3KB

.vdt Size: - Virtual size: 107KB

.vsctn Size: 2KB - Virtual size: 1KB

.rsrc Size: 512B - Virtual size: 16B

.reloc Size: 1KB - Virtual size: 1KB

.text
Size: 214KB - Virtual size: 213KB

.rdata
Size: 11KB - Virtual size: 11KB

.data
Size: 3KB - Virtual size: 3KB

.vdt
Size: - Virtual size: 107KB

.vsctn
Size: 2KB - Virtual size: 1KB

.rsrc
Size: 512B - Virtual size: 16B

.reloc
Size: 1KB - Virtual size: 1KB