ac14c7fdf5e21a05fb5ca07ab7366560

Sharing

Copy URL Twitter E-mail

General

Target

ac14c7fdf5e21a05fb5ca07ab7366560
Size

104KB
MD5

ac14c7fdf5e21a05fb5ca07ab7366560
SHA1

bb57e5be5b2a11885bcb092d956944850fe0ff8d
SHA256

00ac5792258c7e2268cba5b9be4d349e120a102de400a2f3a38a52244934c2e2
SHA512

9b06581dbc8fea795ef92ed7a5ef67e64993f051d431b1beb33dc8c6ea374dfc3a2651ed6b20f4a5e5fb997b524beacf859f13c8fc6db650959329697eaf7f6b
SSDEEP

1536:NTdqOLEkpC0lO32xZCxoyLe0h/Fc+SVh1aSaqbo3BTaUn5:NTEOLrlRZvyKSSTZ0N

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ac14c7fdf5e21a05fb5ca07ab7366560

Files

ac14c7fdf5e21a05fb5ca07ab7366560
.exe windows:4 windows x86 arch:x86

e9a90b3efad4c142e1a170dc10a49709

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

IsWindow
CopyImage
DrawTextA
InsertMenuA
BlockInput
GetDlgItem
GetMenu
CloseWindow
IsMenu
DialogBoxParamA
GetCursor
GetWindowTextLengthA
CopyRect
DrawIcon
CalcMenuBar
DrawTextW
DialogBoxParamW
DrawTextA
GetFocus
LoadCursorA
GetDC
GetWindowTextA
CopyIcon
GetMenu
IsWindow
InsertMenuA
CopyImage
EndDialog

kernel32

CopyFileExA
FindFirstFileA
GlobalFree
ReadConsoleA
CopyFileA
GetStdHandle
GetCommandLineA
DeleteFileW
Sleep
FindAtomA
OpenFileMappingA
CreateProcessA
GetFileTime
DeleteAtom
GetConsoleMode
GetCPInfo
SetLastError
ExitThread
WriteFile
DeleteFileA
DeleteAtom
CopyFileA
ReadFile
GetConsoleMode
GetStdHandle
DeleteFileW
OpenFile
GetCommandLineA
CopyFileExA
GetConsoleMode
GetCommandLineA
ReadFile
OpenFileMappingA
GetStdHandle
ReadConsoleA
CopyFileExW
FindFirstFileA
OpenFile
WriteFile
CopyFileW
GetCPInfo
DeleteFileW
OpenFile
GetStdHandle
CopyFileExA
GlobalFree
DeleteFileA
ReadFile
OpenFileMappingA
GetFileTime
GetCommandLineA

advapi32

RegEnumValueA
RegQueryValueExA
RegOpenKeyExA
RegEnumKeyExA
RegCreateKeyW
RegQueryValueExW
RegEnumKeyA
RegGetKeySecurity
RegQueryInfoKeyW
RegQueryValueW
RegEnumKeyExW
RegOpenKeyExW
RegDeleteKeyA
RegReplaceKeyW
RegEnumKeyW
RegFlushKey
RegDeleteKeyW
RegLoadKeyA
RegOpenKeyExA
RegEnumKeyExW
RegEnumValueA
RegDeleteValueA
RegGetKeySecurity
RegQueryInfoKeyW
RegEnumKeyExA
RegQueryValueA
RegReplaceKeyA
RegEnumValueW
RegOpenKeyA
RegDeleteValueW
RegQueryInfoKeyA
RegLoadKeyA
RegCreateKeyExA
RegReplaceKeyW
RegDeleteKeyA

comctl32

ImageList_DragEnter
ImageList_Replace
ImageList_GetIconSize
ImageList_Read
ImageList_DrawEx
ImageList_Draw
ImageList_BeginDrag
ImageList_Create
ImageList_GetImageRect
ImageList_Destroy
ImageList_LoadImageW
ImageList_DragMove
ImageList_AddMasked
ImageList_GetIcon
InitCommonControls
ImageList_Remove

Sections

.text
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 72KB - Virtual size: 69KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 53KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e9a90b3efad4c142e1a170dc10a49709

Headers

File Characteristics

Imports

user32

kernel32

advapi32

comctl32

Sections

.text Size: 8KB - Virtual size: 5KB

.data Size: 72KB - Virtual size: 69KB

.tls Size: 4KB - Virtual size: 4KB

.rdata Size: 8KB - Virtual size: 5KB

.idata Size: 4KB - Virtual size: 3KB

.rsrc Size: 4KB - Virtual size: 53KB

.text
Size: 8KB - Virtual size: 5KB

.data
Size: 72KB - Virtual size: 69KB

.tls
Size: 4KB - Virtual size: 4KB

.rdata
Size: 8KB - Virtual size: 5KB

.idata
Size: 4KB - Virtual size: 3KB

.rsrc
Size: 4KB - Virtual size: 53KB