abdc77c19f2595c3137c5520ee7c4519

General

Target

abdc77c19f2595c3137c5520ee7c4519
Size

174KB
MD5

abdc77c19f2595c3137c5520ee7c4519
SHA1

94fa35afa2fdd43658c9ea9b2737f108e9c0c49f
SHA256

74608ecb54eb1f5b3666d09069d5349327c758ac5a1dcc37b5589417bac12135
SHA512

2a707559cf719d702daadf438d0ebdce38b0b7c6acbaa043876a1b954e16b4942cb04d1ba6474fdbbdbd41eb0c58e248bf180ae66ad76d11ef1d02ee4e042d3c
SSDEEP

3072:YzlqVoqvjmUtQ6IoA9jZ/+EhAf5tcUyO7btyyOPRHn0ZUaJNNjh+sh:njO6IoAPG9tyetyysaJvhZ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
abdc77c19f2595c3137c5520ee7c4519

Files

abdc77c19f2595c3137c5520ee7c4519
.exe windows:4 windows x86 arch:x86

278affe8fd5703b215c8de758d99f79b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_DEBUG_STRIPPED

Imports

user32

DispatchMessageW
CharNextW
wsprintfW
PostThreadMessageW
CharUpperW
SendMessageA
KillTimer
GetDC
SetTimer
GetMessageW
TranslateMessage
UnregisterClassA

advapi32

RegCloseKey
RegQueryInfoKeyW
RegCreateKeyExW
RegDeleteValueW
RegEnumKeyExW
RegDeleteKeyW
RegOpenKeyExW
RegSetValueExW

ole32

CoTaskMemAlloc
CoUninitialize
CoRegisterClassObject
CoTaskMemFree
CoInitialize
CoCreateInstance
CoTaskMemRealloc
StringFromGUID2
CoRevokeClassObject
StringFromCLSID

kernel32

lstrlenW
lstrcpyA
OutputDebugStringW
lstrcpyW
GetProcessId
LockResource
GlobalAlloc
GetTickCount
FindClose
MultiByteToWideChar
EnumResourceNamesW
lstrcpyA
GetACP
GlobalFree
GetLastError
WideCharToMultiByte
lstrcmpiW
FreeEnvironmentStringsW
InitializeCriticalSection
GetCPInfo
CreateFileMappingW
GetModuleHandleW

shlwapi

PathCombineW
PathFileExistsW

oleacc

LresultFromObject
CreateStdAccessibleObject

Sections

.text
Size: 104KB - Virtual size: 103KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 66KB - Virtual size: 66KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.isete
Size: 1024B - Virtual size: 120KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

278affe8fd5703b215c8de758d99f79b

Headers

File Characteristics

Imports

user32

advapi32

ole32

kernel32

shlwapi

oleacc

Sections

.text Size: 104KB - Virtual size: 103KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 66KB - Virtual size: 66KB

.isete Size: 1024B - Virtual size: 120KB

.text
Size: 104KB - Virtual size: 103KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 66KB - Virtual size: 66KB

.isete
Size: 1024B - Virtual size: 120KB