aad1b177d83ebe8ee7a3d17616d2bdcc

Sharing

Copy URL Twitter E-mail

General

Target

aad1b177d83ebe8ee7a3d17616d2bdcc
Size

199KB
MD5

aad1b177d83ebe8ee7a3d17616d2bdcc
SHA1

c1deb2a57f3a7ab6559862f2716052c6b19a65dd
SHA256

dd4a55550bed752723a5cccb4c948735c6c8553ec4857db27afaf8ba26564b4b
SHA512

b49690f0580dc8dbe78ca384bbf86ae7bd98595a599386bb7ac4de5ea99686df7b5292222ee32b353e851a1c7a8f3e9638c85530b63717c1b6bc079d7383b234
SSDEEP

6144:YfK8JJ5deDZLTxdpJUulU6p8kCvdY+ynwFA72dmT:8K8RYDJG62kC1Y+ynr2C

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
aad1b177d83ebe8ee7a3d17616d2bdcc

Files

aad1b177d83ebe8ee7a3d17616d2bdcc
.exe windows:4 windows x86 arch:x86

6efeece7445b135b854675cf7a017852

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_DEBUG_STRIPPED

Imports

gdi32

EnumFontFamiliesExA
TextOutA
GetStockObject
DeleteMetaFile
GetObjectA
SetTextColor
CreateFontIndirectA
BitBlt
SelectObject
GetTextExtentPoint32A
SetBkMode
DeleteDC
CreateCompatibleDC
SaveDC
GetDeviceCaps
CreateRectRgn
Rectangle
DeleteObject
CreateSolidBrush
RestoreDC
CreateCompatibleBitmap

user32

SetWindowPos
GetWindowInfo
GetDlgItem
IsWindow
FillRect
ReleaseDC
SetCursor
GetSysColor
ReleaseCapture
LoadCursorA
GetWindowLongA
MoveWindow
GetDC
SetWindowLongA
SetCapture

kernel32

SetTapeParameters
GetLocalTime
ClearCommError
Sleep
FindClose
GetWindowsDirectoryA
EnumResourceNamesA
GetCurrentProcessId
ExitProcess
GetVersion
InterlockedExchange
FindFirstFileA

advapi32

RegDeleteKeyA
RegCloseKey
RegEnumKeyExA
RegOpenKeyA
RegQueryValueExA
RegOpenKeyExA
RegCreateKeyExA
RegSetValueExA

oleacc

LresultFromObject
CreateStdAccessibleObject

shell32

SHGetPathFromIDListA
SHGetMalloc
SHGetSpecialFolderLocation

version

GetFileVersionInfoA
VerQueryValueA
GetFileVersionInfoSizeA

winmm

mciSendCommandA
sndPlaySoundA

ole32

ProgIDFromCLSID
CoTaskMemFree
StringFromCLSID

Sections

.text
Size: 167KB - Virtual size: 167KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 27KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.lib
Size: 512B - Virtual size: 104KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6efeece7445b135b854675cf7a017852

Headers

File Characteristics

Imports

gdi32

user32

kernel32

advapi32

oleacc

shell32

version

winmm

ole32

Sections

.text Size: 167KB - Virtual size: 167KB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 27KB - Virtual size: 27KB

.lib Size: 512B - Virtual size: 104KB

.text
Size: 167KB - Virtual size: 167KB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 27KB - Virtual size: 27KB

.lib
Size: 512B - Virtual size: 104KB