a162a2efd0bf2ff92e6089b4684bc5cc

Sharing

Copy URL

Twitter E-mail

General

Target

a162a2efd0bf2ff92e6089b4684bc5cc
Size

228KB
MD5

a162a2efd0bf2ff92e6089b4684bc5cc
SHA1

d25ebe7516665d0b2238cab9b63791894fd0b753
SHA256

deaf06c11924da68f95d5d22d034b2657b4a56f4dc9195f7dd79a5c27c22a317
SHA512

b71319be2f090a24f29bd1672ab60555b92b2b433a3729ff29d55be06caf8a41b477884dc9c9e45cebb36c7bd41f1c3a2238196a86b412a1d75ade65dbd396b6
SSDEEP

6144:NHJvLLdoSfM0blUTslyQKs+l97rIYx8BaWz2pc:NHHobslyQKDPx8bz

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a162a2efd0bf2ff92e6089b4684bc5cc

Files

a162a2efd0bf2ff92e6089b4684bc5cc
.exe windows:4 windows x86 arch:x86

e9bdefd4186fa98cf3d291281b6db04f

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

AddAtomW
BackupSeek
DosDateTimeToFileTime
EscapeCommFunction
ExitProcess
GetCurrentProcessId
GetLocalTime
GetModuleHandleA
GetPriorityClass
GetVersion
InitializeCriticalSectionAndSpinCount
LocalReAlloc
MultiByteToWideChar
RemoveDirectoryA
SetCommConfig
SetConsoleCP
SetConsoleMode
SetDefaultCommConfigA
SetLastError
WinExec
WriteConsoleInputW
WriteConsoleOutputCharacterA
WriteFileGather

user32

AnimateWindow
BeginDeferWindowPos
CharPrevExA
CreateWindowExW
DeleteMenu
DispatchMessageA
DragObject
DrawFrameControl
EnumChildWindows
EqualRect
GetClipCursor
GetKeyboardState
GetMenuStringW
GetMessageA
GetTopWindow
GetUserObjectInformationW
GetWindowDC
GetWindowInfo
InsertMenuItemW
LoadIconA
LoadKeyboardLayoutW
LockWindowStation
MessageBoxA
MonitorFromPoint
OemToCharA
PtInRect
RedrawWindow
SendNotifyMessageW
SetSysColors

gdi32

BeginPath
CopyEnhMetaFileA
CopyMetaFileA
CopyMetaFileW
CreateCompatibleBitmap
CreateDIBPatternBrush
CreateDIBSection
CreateDIBitmap
CreateFontIndirectA
CreateFontIndirectW
DeviceCapabilitiesExW
EndPage
EnumObjects
FixBrushOrgEx
GdiPlayScript
GetBitmapBits
GetCharABCWidthsFloatA
GetCharWidth32A
GetKerningPairsA
GetStretchBltMode
LineDDA
PlayEnhMetaFileRecord
ResetDCW
SetAbortProc
SetBkColor
SetPixel
SetTextCharacterExtra
TranslateCharsetInfo
UnrealizeObject
UpdateICMRegKeyA

Sections

.text
Size: 512B - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 225KB - Virtual size: 240KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 200KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e9bdefd4186fa98cf3d291281b6db04f

Headers

File Characteristics

Imports

kernel32

user32

gdi32

Sections

.text Size: 512B - Virtual size: 20KB

.data Size: 225KB - Virtual size: 240KB

.rdata Size: - Virtual size: 12KB

.rsrc Size: 1024B - Virtual size: 200KB

.text
Size: 512B - Virtual size: 20KB

.data
Size: 225KB - Virtual size: 240KB

.rdata
Size: - Virtual size: 12KB

.rsrc
Size: 1024B - Virtual size: 200KB