a10fa43f06f6865a1554a6ee5b3b78ee

General

Target

a10fa43f06f6865a1554a6ee5b3b78ee
Size

40KB
MD5

a10fa43f06f6865a1554a6ee5b3b78ee
SHA1

885555a8163da9041a6aba9c4bbb0289c2c55fc8
SHA256

4880fae9c5f61a67fdd100211985272fd6944906d0f3de930e660e345ae54a64
SHA512

eee999209bbd0563df5cddbd079f8b3ce84fc6118c0aa032f7bd0c57517da46ea58f1370a3b7859a819ce29dff3257bf5b5a1b68de43eb7ffb2f76072230d51e
SSDEEP

768:6nHZA3b5dRJDLmJVDJnptkwc94vQ+SvUb2D1SpBDvk00KMBmWjE1nTStRToRid:uHsb512JrkwcSM8C1SrI5jE1n2wRi

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a10fa43f06f6865a1554a6ee5b3b78ee

Files

a10fa43f06f6865a1554a6ee5b3b78ee
.exe windows:4 windows x86 arch:x86

2616d1e5cc80d9834f8a334daa88aafe

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CompareStringA
CreateFiber
CreateMailslotW
CreateNamedPipeW
CreateRemoteThread
EnumResourceNamesA
EnumSystemLocalesW
ExitProcess
FreeEnvironmentStringsW
GetCommModemStatus
GetConsoleScreenBufferInfo
GetCurrentProcess
GetDiskFreeSpaceExW
GetLongPathNameW
GetModuleHandleA
GetStringTypeExA
GetVolumeInformationW
GlobalGetAtomNameW
Heap32First
HeapValidate
IsBadReadPtr
IsValidLocale
MultiByteToWideChar
ReadConsoleInputA
SetCriticalSectionSpinCount
SetProcessAffinityMask
WriteConsoleW
_hwrite
_lread
lstrcpyW

user32

CharNextW
CreateDesktopA
DdeCreateStringHandleA
DlgDirSelectComboBoxExA
DrawCaption
DrawFrame
EnumPropsExW
GetActiveWindow
GetClassInfoExW
GetClipboardData
GetClipboardFormatNameA
GetKeyboardLayout
GetMenuItemInfoW
LockWindowUpdate
ScrollDC
SetScrollInfo
SetWindowContextHelpId
SetWindowPlacement
SystemParametersInfoA
TranslateAccelerator
TranslateAcceleratorW
UnionRect
WaitMessage

gdi32

AddFontResourceW
CheckColorsInGamut
CombineRgn
CreateDCA
CreateDIBitmap
DeleteDC
DeleteEnhMetaFile
EnumFontFamiliesA
EqualRgn
FillPath
GdiPlayDCScript
GetCharWidthW
GetKerningPairs
GetObjectA
PlgBlt
Rectangle
SetBitmapBits
SetEnhMetaFileBits
SetStretchBltMode
UpdateICMRegKeyA

Sections

.code
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 38KB - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

2616d1e5cc80d9834f8a334daa88aafe

Headers

File Characteristics

Imports

kernel32

user32

gdi32

Sections

.code Size: 512B - Virtual size: 4KB

.data Size: 38KB - Virtual size: 44KB

.rdata Size: 512B - Virtual size: 20KB

.code
Size: 512B - Virtual size: 4KB

.data
Size: 38KB - Virtual size: 44KB

.rdata
Size: 512B - Virtual size: 20KB