aacf1b31998b3c89851b2383a9e90863

General

Target

aacf1b31998b3c89851b2383a9e90863
Size

32KB
MD5

aacf1b31998b3c89851b2383a9e90863
SHA1

fdb4b5a7ebfcd74a9c90506cdd79c970ff29e963
SHA256

1eecfc24652edd7d592119d265d31f806e91230921185eceefd814b8a7fb1a5e
SHA512

c297156ff529446328763bde4964fdc616e85da79846391e23c37b53977a574b8e1ce58f4b2c6034631dff52c50f72c78903f5c39794b56c02599ca9f0919294
SSDEEP

384:9tG5L8bVQnmd8cCXXD7LrrkX4tNyXB/Ss966/qDeJSfv8pjF7b8YLEFrWarbPFmz:SA5Qmycsbk0e6HeJ5v7IbPfyf

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
aacf1b31998b3c89851b2383a9e90863

Files

aacf1b31998b3c89851b2383a9e90863
.exe windows:4 windows x86 arch:x86

8ade89df24a075dd662694c43c9bf1d6

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

Module32FirstW
Thread32Next
SetConsoleInputExeNameA
EnterCriticalSection
GlobalGetAtomNameA
WriteConsoleOutputW
GlobalGetAtomNameA
GlobalGetAtomNameA
GetProcessAffinityMask
GetCommandLineA
ExitProcess
GetStartupInfoA

user32

IsDialogMessage
CreateIconFromResource
RemovePropW
AdjustWindowRect
EnumWindowStationsW
GetMenu
DeferWindowPos
FindWindowExA
IsWindow
SetDlgItemTextA
GetCaretBlinkTime
wsprintfW
GetDoubleClickTime
DrawFocusRect
GetDialogBaseUnits
InflateRect
GetTabbedTextExtentW
CascadeChildWindows
EnumWindowStationsW
DdeReconnect
CloseClipboard
CharUpperA

shell32

SHAppBarMessage
ExtractIconExA
SHPathPrepareForWriteW
SHGetSpecialFolderPathA
ExtractAssociatedIconExA
ShellExecuteExW
StrRStrW
DragQueryFileAorW

Sections

.text
Size: 4KB - Virtual size: 15KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 23KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.qmstk
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

8ade89df24a075dd662694c43c9bf1d6

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

shell32

Sections

.text Size: 4KB - Virtual size: 15KB

.data Size: 23KB - Virtual size: 24KB

.rsrc Size: 1KB - Virtual size: 4KB

.qmstk Size: 2KB - Virtual size: 2KB

.reloc Size: - Virtual size: 4KB

.text
Size: 4KB - Virtual size: 15KB

.data
Size: 23KB - Virtual size: 24KB

.rsrc
Size: 1KB - Virtual size: 4KB

.qmstk
Size: 2KB - Virtual size: 2KB

.reloc
Size: - Virtual size: 4KB