9b327db3c5412563a1b30aaeaf181f65

General

Target

9b327db3c5412563a1b30aaeaf181f65
Size

98KB
MD5

9b327db3c5412563a1b30aaeaf181f65
SHA1

f44db91debf3eb287975a3b9e61788d89ad1f163
SHA256

51e99046af6de1349ecd86ba469763bef1e74db9dc793034080e5a1caebff36d
SHA512

48de02f3869bf22349b8e800c5d1d9b0186f4f2e3d863a34c5e4b08892ab18d4b1d64972dde2adab7aba68e033a553833d4c1f634b68c800646ff680536bb2fa
SSDEEP

1536:PjPWzr2/lhXCWlHugjyJfF3yLudQVqunpaPIjYAVP1ch2w:PjI2TSWQgjCh+i6npP60w

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
9b327db3c5412563a1b30aaeaf181f65

Files

9b327db3c5412563a1b30aaeaf181f65
.dll windows:4 windows x86 arch:x86

732cd5085543cdab953c35f8ef8a085a

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

OpenMutexA
SetConsoleFont
GetConsoleAliasesLengthA
GetCurrentDirectoryA
lstrcpynW
GetCurrentDirectoryW
GetComputerNameA
GetLocalTime
IsDBCSLeadByteEx
WriteConsoleInputA
CloseHandle
GetLastError
PurgeComm
FreeConsole
WaitCommEvent
VirtualAlloc
ResumeThread

user32

LoadKeyboardLayoutW
CreateDialogParamA
GetSubMenu
SetWindowsHookA
CopyImage
DdeUnaccessData
LoadBitmapA
EnumClipboardFormats
RemovePropW
ModifyMenuA
wsprintfW
CharUpperA
ShowCaret

gdi32

EndDoc
WidenPath
GetMapMode
CreateEnhMetaFileA
CreatePatternBrush
GetGlyphOutlineWow
GdiEntry7
RealizePalette
SetDIBColorTable
GdiEntry12
GdiConvertFont
GetNearestPaletteIndex
FixBrushOrgEx
SetPixel
GetHFONT
RemoveFontResourceTracking
DeleteEnhMetaFile
CopyEnhMetaFileA
GetTextExtentPointW
SelectPalette
RemoveFontResourceW
ResetDCW
GdiEntry11
GetBitmapDimensionEx
SetBkMode
GetMetaFileBitsEx
GdiIsMetaFileDC
ChoosePixelFormat
AddFontResourceA
DrawEscape
GetCharWidth32A
Ellipse
GdiSwapBuffers
CreatePolyPolygonRgn
ExtEscape
GetTextExtentExPointA

Sections

.data
Size: 44KB - Virtual size: 116KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 45KB - Virtual size: 112KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

BSS
Size: 3KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 3KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

732cd5085543cdab953c35f8ef8a085a

Headers

File Characteristics

Imports

kernel32

user32

gdi32

Sections

.data Size: 44KB - Virtual size: 116KB

.text Size: 45KB - Virtual size: 112KB

BSS Size: 3KB - Virtual size: 12KB

.idata Size: 3KB - Virtual size: 28KB

.reloc Size: 2KB - Virtual size: 4KB

.data
Size: 44KB - Virtual size: 116KB

.text
Size: 45KB - Virtual size: 112KB

BSS
Size: 3KB - Virtual size: 12KB

.idata
Size: 3KB - Virtual size: 28KB

.reloc
Size: 2KB - Virtual size: 4KB