abb5120984b9959a058f75950898022d

Sharing

Copy URL

Twitter E-mail

General

Target

abb5120984b9959a058f75950898022d
Size

175KB
MD5

abb5120984b9959a058f75950898022d
SHA1

2cfcb77f2181aba928a7990c1900ef4f244dcf38
SHA256

984c91c5e69233cc6a9dcd707cd5e0869b359c3e13eee006cb67acc59991a0d3
SHA512

336257a48481223a8d50499992a2752ded22c593de7a49bf0d9f86f7f7a8f6050593918021ba14d25f72bfc7a4a43b2104b91c60fca3e1ca8d74027cfa723121
SSDEEP

3072:G4nJ+EFp/KCBtVt7MiXMimyetoPShr/dEQ0F0ZPQydH3cxqrcYu:9ngE/KqYi8OeteShZEQKwPDsxq8

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
abb5120984b9959a058f75950898022d

Files

abb5120984b9959a058f75950898022d
.exe windows:5 windows x86 arch:x86

11ca15fe9b42040672b5b8b09799ebe9

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

D:\bKBYrndH\zUJZ\azKPAo.pdb

Imports

kernel32

MulDiv
GlobalGetAtomNameA
lstrlenA
SetCommBreak
GetModuleHandleW
MoveFileW
SetHandleCount
lstrcmpA
SetupComm
SearchPathA
GetProcAddress
SetCommState
GetTickCount
GetSystemDefaultLCID
SetThreadExecutionState

comctl32

ImageList_Destroy
ImageList_Write
PropertySheetA
DestroyPropertySheetPage

user32

GetWindow
LoadCursorW
GetSubMenu
GetMenuItemRect
CharNextExA
GetWindowRect
GetShellWindow
GetClassLongW
GetForegroundWindow
CheckMenuRadioItem
SetDlgItemTextW
EnumThreadWindows
AdjustWindowRectEx

comdlg32

PrintDlgW
ChooseFontW

gdi32

CreateFontA
LineTo
GetNearestPaletteIndex
GetDIBits
CreateFontW
GetPixel

Exports

Exports

?nfglpocaNboTt@@YGPAHG@Z
?geOwQyuaZLr@@YG_N_N@Z
?rzhSISqvKujvtuMzgX@@YGXPAFPAE@Z
?dHwaIbjpqpQazvZtRfqhfr@@YGND_N@Z
?hQuenLogvtznznqbcujro@@YGIF@Z
?zwBwpgwfm@@YGDPAEI@Z

Sections

.text
Size: 19KB - Virtual size: 18KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 82KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.crt
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 285B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 145KB - Virtual size: 145KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

11ca15fe9b42040672b5b8b09799ebe9

Headers

File Characteristics

PDB Paths

Imports

kernel32

comctl32

user32

comdlg32

gdi32

Exports

Exports

Sections

.text Size: 19KB - Virtual size: 18KB

.data Size: 2KB - Virtual size: 82KB

.crt Size: 4KB - Virtual size: 4KB

.edata Size: 512B - Virtual size: 285B

.rsrc Size: 145KB - Virtual size: 145KB

.reloc Size: 2KB - Virtual size: 2KB

.text
Size: 19KB - Virtual size: 18KB

.data
Size: 2KB - Virtual size: 82KB

.crt
Size: 4KB - Virtual size: 4KB

.edata
Size: 512B - Virtual size: 285B

.rsrc
Size: 145KB - Virtual size: 145KB

.reloc
Size: 2KB - Virtual size: 2KB