9b31fd32ca3e095ddb986e3078c60231

General

Target

9b31fd32ca3e095ddb986e3078c60231
Size

73KB
MD5

9b31fd32ca3e095ddb986e3078c60231
SHA1

dd7ff1f353fd1ce4fb28cf5f8e17cde65ca51abc
SHA256

50cf929406f2858eb1614e5988b7d7cd48c593f6546fbb92e4e636a92de18db2
SHA512

1323dacf0587f83685aebe3a7dce7a7ccd96e0a0535bc407473e0da8713f5b14815e00c0e8e159d44c19995cc4bf75c3e4792cabd5d04d42453f5befe24f3708
SSDEEP

1536:A2Lk8sevnPpDfEmwjMcmnyKie2pdAX3a7GiJ0WvmXefUfxl+SV:vYAvnPt8/jHvdWXcceAx4SV

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
9b31fd32ca3e095ddb986e3078c60231

Files

9b31fd32ca3e095ddb986e3078c60231
.exe windows:4 windows x86 arch:x86

51f2b946e3e5f4502ac65cfb6bf47195

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

InitAtomTable
IsProcessorFeaturePresent
GetStringTypeExW
WaitForMultipleObjectsEx
GetDateFormatW
FindNextFileA
LocalFree
VirtualAlloc
GetCurrentThread
GetDefaultCommConfigW
IsBadHugeReadPtr
HeapAlloc
_lclose
DuplicateConsoleHandle
HeapUnlock
lstrlen
VerLanguageNameW
SetConsoleNumberOfCommandsA
WriteFile
ClearCommError
GetConsoleKeyboardLayoutNameA

user32

ReplyMessage
EnumThreadWindows
CreateDesktopW
GetPriorityClipboardFormat
TrackMouseEvent
LockWindowUpdate
UnhookWindowsHookEx
SwitchDesktop
GetClassNameA
DdePostAdvise
RegisterClipboardFormatA
TranslateMDISysAccel
MenuWindowProcW
OemToCharBuffW
GetUpdateRect
GetParent
DdeGetLastError
ScrollWindowEx
OpenInputDesktop
OpenDesktopW
CloseClipboard
GetProgmanWindow
GetDoubleClickTime
EnumDisplaySettingsW
ShowWindowAsync
GetCursor
LookupIconIdFromDirectory
MsgWaitForMultipleObjectsEx
DefMDIChildProcA
CharNextA
DdeGetQualityOfService
EnumPropsExW

gdi32

SetBitmapDimensionEx
SetDIBColorTable
SetBoundsRect
GetRandomRgn
PlayMetaFile
StretchDIBits
PolylineTo
UpdateColors
SetPixel
GetGlyphOutlineA
GetCharWidth32A
GetEnhMetaFileBits
GetStockObject
GetRgnBox
GdiGetBatchLimit
GetEnhMetaFileW
StartDocW

Sections

.text
Size: 62KB - Virtual size: 128KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: 3KB - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

51f2b946e3e5f4502ac65cfb6bf47195

Headers

File Characteristics

Imports

kernel32

user32

gdi32

Sections

.text Size: 62KB - Virtual size: 128KB

.data Size: 4KB - Virtual size: 8KB

.idata Size: 3KB - Virtual size: 8KB

BSS Size: 3KB - Virtual size: 84KB

.text
Size: 62KB - Virtual size: 128KB

.data
Size: 4KB - Virtual size: 8KB

.idata
Size: 3KB - Virtual size: 8KB

BSS
Size: 3KB - Virtual size: 84KB