9a9b11421ba121e52cf3d40e59ccb330

General

Target

9a9b11421ba121e52cf3d40e59ccb330
Size

89KB
MD5

9a9b11421ba121e52cf3d40e59ccb330
SHA1

2cfcf27f8a9bfbb138df8495d666240396a5f74a
SHA256

a21e1d563a5208c10394779abe962d8c620b9234ea00f0e11edbfa864462ae5e
SHA512

8bece51abc3e3985ce11950919d3328e780b0e4f74fa6da6f65b07b34624146d7b4f089a5f565123f48d983f3dfefb2cf4682b835b2322da5a4dcac7f931ed63
SSDEEP

1536:i1yhGafPgBQFRwoMbJT9AFWk+9EIegoY9eVDxxkgbU/j3:iwGafAoMbJTG/8EDgUVckU/j

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
9a9b11421ba121e52cf3d40e59ccb330

Files

9a9b11421ba121e52cf3d40e59ccb330
.exe windows:4 windows x86 arch:x86

293546e42753098fc3e2dca75dc26cdf

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleA
lstrcatA
GetCommandLineA
GetStdHandle
GetDateFormatA
lstrcpynA
DeleteFileA
FreeLibrary
GlobalFree
GetStringTypeA
lstrcmpA
lstrlenA
GetLocalTime
GetStringTypeW
lstrcpyA
CloseHandle
GetFileAttributesA
HeapAlloc
HeapFree

advapi32

RegOpenKeyW
RegReplaceKeyW
RegDeleteKeyA
RegFlushKey
RegQueryInfoKeyW
RegCreateKeyExW
RegQueryValueA
RegEnumKeyExA
RegEnumValueW
RegLoadKeyA
RegDeleteValueW
RegGetKeySecurity
RegOpenKeyExW
RegEnumKeyW
RegQueryValueExW
RegDeleteKeyW

user32

CloseWindow
GetWindowTextA
DrawTextW
EndDialog
AlignRects
GetWindowTextLengthA
CalcMenuBar
GetDC
InsertMenuA
DrawIcon
IsWindow
DrawIconEx
AppendMenuA
LoadCursorA
BlockInput
DrawTextA
CreateIcon
IsMenu

comctl32

ImageList_AddMasked
ImageList_DragMove
ImageList_GetIconSize
InitCommonControls
ImageList_Copy
ImageList_EndDrag
ImageList_LoadImageA
ImageList_Draw
ImageList_GetImageCount
ImageList_GetDragImage
ImageList_Create
ImageList_DrawEx
ImageList_DrawIndirect
ImageList_Destroy
ImageList_Read
ImageList_Replace
ImageList_GetImageInfo
ImageList_Merge
ImageList_DragEnter
ImageList_Remove

Sections

.PEypE
Size: 15KB - Virtual size: 14KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.BpRCX
Size: 67KB - Virtual size: 66KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.aLwnl
Size: 512B - Virtual size: 160KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.mXQX
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

293546e42753098fc3e2dca75dc26cdf

Headers

File Characteristics

Imports

kernel32

advapi32

user32

comctl32

Sections

.PEypE Size: 15KB - Virtual size: 14KB

.BpRCX Size: 67KB - Virtual size: 66KB

.aLwnl Size: 512B - Virtual size: 160KB

.mXQX Size: 2KB - Virtual size: 2KB

.PEypE
Size: 15KB - Virtual size: 14KB

.BpRCX
Size: 67KB - Virtual size: 66KB

.aLwnl
Size: 512B - Virtual size: 160KB

.mXQX
Size: 2KB - Virtual size: 2KB