a3d17bcafac993b4e9ee374194b0f431

General

Target

a3d17bcafac993b4e9ee374194b0f431
Size

211KB
MD5

a3d17bcafac993b4e9ee374194b0f431
SHA1

82089239ccd0fb95f4d99d25dffe0103c18fe6dc
SHA256

c1b4f54e3c592c22758179c35b103c99f72e62962fb121f9de0bb0503ec96347
SHA512

ff4eb4647f4b1b8b42fead40aeac2190423b2163e4b5d570313f894f588298562e6957de10cf0f26c884a40a049e0569ec87ea8d7dfd7d940595e030f2973a73
SSDEEP

6144:X6V3hes3hkn/uMLCvkg9OlP5wDaRWEtdYZTzNF:X6Ngs2JOv0lP5wDabuZTZF

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a3d17bcafac993b4e9ee374194b0f431

Files

a3d17bcafac993b4e9ee374194b0f431
.exe windows:4 windows x86 arch:x86

f27826895ace152527ba7ed7cb24843a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

CharLowerA
ClientToScreen
DefWindowProcA
DestroyMenu
GetCursorPos
GetDC
GetKeyState
GetLastActivePopup
GetMessagePos
GetScrollPos
LoadIconA
OffsetRect
RedrawWindow
RemovePropA
ScreenToClient
ScrollWindow
SendMessageA
SetCapture
SetScrollInfo
ShowCursor
UpdateWindow

kernel32

GetCommandLineA
GetCurrentDirectoryA
GetFileSize
GetFileType
GetLocaleInfoA
GetModuleFileNameW
GetStartupInfoA
InterlockedExchange
IsBadCodePtr
LoadLibraryExW
LocalAlloc

gdi32

AbortDoc
AddFontResourceA
BitBlt
Chord
CopyEnhMetaFileA
CreateEnhMetaFileA
CreateMetaFileW
CreatePolygonRgn
EndPage
Escape
FrameRgn
GetMetaFileBitsEx
GetObjectW
GetTextExtentPoint32W
GetTextFaceA
GetTextMetricsA
GetWindowExtEx
OffsetClipRgn
PlayEnhMetaFile
Polygon
PtInRegion
RealizePalette
SetBkMode
SetColorAdjustment
SetMetaFileBitsEx
SetTextCharacterExtra
SetTextJustification
StretchBlt
TextOutA

Sections

.text
Size: 89KB - Virtual size: 88KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 99KB - Virtual size: 98KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 18KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

NewUZYeP
Size: 2KB - Virtual size: 120KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

f27826895ace152527ba7ed7cb24843a

Headers

File Characteristics

Imports

user32

kernel32

gdi32

Sections

.text Size: 89KB - Virtual size: 88KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 99KB - Virtual size: 98KB

.rsrc Size: 18KB - Virtual size: 17KB

NewUZYeP Size: 2KB - Virtual size: 120KB

.text
Size: 89KB - Virtual size: 88KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 99KB - Virtual size: 98KB

.rsrc
Size: 18KB - Virtual size: 17KB

NewUZYeP
Size: 2KB - Virtual size: 120KB