a2d84567192cdf00dc10ff8d03b5ef5e

General

Target

a2d84567192cdf00dc10ff8d03b5ef5e
Size

176KB
MD5

a2d84567192cdf00dc10ff8d03b5ef5e
SHA1

47cf661813119c394719dcfe553c0a36755aee35
SHA256

a15795db78c79735052c21dbb63d62e82661cd69007bde3f44933f1dcd79b845
SHA512

1432e084b5e92b3bc445f666247c2c987bba54478da59bf0f9edd5db6e6255eb258d21e2b622aa3e9f1b0f38f6407e7f2a14300aa3d9681a978f2e0a56b2a6f9
SSDEEP

3072:jAPdT4275G70vkQwmAARc4kHXe3zsmpTMiC3h6AKzmZmwcIRzkjZdaBB:A5JAAR0HXeo8ih61EkjZdW

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a2d84567192cdf00dc10ff8d03b5ef5e

Files

a2d84567192cdf00dc10ff8d03b5ef5e
.dll windows:4 windows x86 arch:x86

af336b70bb074a36133a4ed9ba81a914

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

ole32

CoUninitialize
CoCreateInstance

dbghelp

SymRegisterFunctionEntryCallback
SymCleanup

user32

ReleaseDC
LoadStringW
GetWindowRect
GetWindowLongW
GetSystemMetrics
GetSysColor
GetDlgItem
GetDesktopWindow
EndDialog
EnableWindow
CloseDesktop

advapi32

RegQueryValueExW
RegOpenKeyW
RegDeleteValueW
RegCloseKey
RegSetValueExW

kernel32

VirtualFree
UnhandledExceptionFilter
TerminateProcess
SetThreadIdealProcessor
QueryPerformanceCounter
VirtualProtect
LCMapStringA
InterlockedExchange
HeapReAlloc
HeapCreate
HeapAlloc
GetVersionExA
WideCharToMultiByte
lstrcmpiW
lstrcpyW
lstrlenW
LCMapStringW
GetCommandLineA
CreateDirectoryExA
DeleteTimerQueueTimer
ExitProcess
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetACP
GetCurrentProcess
GetEnvironmentStringsA
GetFileType
GetLastError
GetLocaleInfoA
GetModuleFileNameA
GetModuleHandleA
GetProcAddress
GetStdHandle
GetStringTypeW
GetSystemTimeAsFileTime

Sections

.text
Size: 85KB - Virtual size: 88KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 9KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 5KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

af336b70bb074a36133a4ed9ba81a914

Headers

File Characteristics

Imports

ole32

dbghelp

user32

advapi32

kernel32

Sections

.text Size: 85KB - Virtual size: 88KB

.data Size: 9KB - Virtual size: 12KB

.rsrc Size: 2KB - Virtual size: 4KB

.reloc Size: 5KB - Virtual size: 8KB

.text
Size: 85KB - Virtual size: 88KB

.data
Size: 9KB - Virtual size: 12KB

.rsrc
Size: 2KB - Virtual size: 4KB

.reloc
Size: 5KB - Virtual size: 8KB