9b376fc2b80cc008525200e2f72fe287

General

Target

9b376fc2b80cc008525200e2f72fe287
Size

177KB
MD5

9b376fc2b80cc008525200e2f72fe287
SHA1

1093641704d61cce9ebbbf93f39e4e889fdbf9ad
SHA256

3e8712eb4ce8264f1bf9564b50fdafd6fc9d553eafac6c0c3867f1306a4b44f0
SHA512

68236aa3e40bf39444efc5366806fca53db4658b434f6bd644b0763a22376865dd29bb6da9068baf578bd2ecf1c38a6e7d2c35c21a8cbe9824833a16c044e54c
SSDEEP

3072:WnuZ4RGu2BDhT8cai10oaFkXSLWHCMX/6OpyNeTCtj3HxB/9s0ejGP:ERMfEiW76d6KyN+Ct9B9ve

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
9b376fc2b80cc008525200e2f72fe287

Files

9b376fc2b80cc008525200e2f72fe287
.dll windows:4 windows x86 arch:x86

a55a76089c7cf94f505dfeb90b09adf9

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

user32

IsWindowEnabled
SetCursor
GetMenu
SetClassLongA
SetCapture
SetClipboardData
GetCapture
GetDesktopWindow
CharLowerA
SetFocus

ole32

CoRevokeClassObject
GetHGlobalFromStream
CoUnmarshalInterface

gdi32

SetBkMode

kernel32

GetStringTypeW
SetLastError
ReadFile
GetCurrentProcess
GetFileAttributesA
GlobalAlloc
GetStringTypeA
lstrlenA
GetFileType
LockResource
GetCurrentThreadId
GetCommandLineA
VirtualAlloc
GetLastError
ExitProcess
IsBadHugeReadPtr
IsBadReadPtr
GetStdHandle
GetProcessHeap
lstrcmpiA
GetModuleHandleW
CloseHandle
VirtualQuery
GetModuleHandleA

comctl32

ImageList_Destroy
ImageList_Read
ImageList_Create
ImageList_Remove
ImageList_Draw
ImageList_GetBkColor
ImageList_Add
ImageList_DrawEx

Exports

Exports

_26dObjFj
__GOw53@16
_9fbAuDwAP

Sections

.text
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 174KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 158KB - Virtual size: 158KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 1000B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a55a76089c7cf94f505dfeb90b09adf9

Headers

File Characteristics

Imports

user32

ole32

gdi32

kernel32

comctl32

Exports

Exports

Sections

.text Size: 11KB - Virtual size: 11KB

.rdata Size: 3KB - Virtual size: 174KB

.data Size: 158KB - Virtual size: 158KB

.rsrc Size: 1024B - Virtual size: 1000B

.reloc Size: 2KB - Virtual size: 2KB

.text
Size: 11KB - Virtual size: 11KB

.rdata
Size: 3KB - Virtual size: 174KB

.data
Size: 158KB - Virtual size: 158KB

.rsrc
Size: 1024B - Virtual size: 1000B

.reloc
Size: 2KB - Virtual size: 2KB