ad6daae834de5ba721dec1a5406bfe52

Sharing

Copy URL Twitter E-mail

General

Target

ad6daae834de5ba721dec1a5406bfe52
Size

36KB
MD5

ad6daae834de5ba721dec1a5406bfe52
SHA1

878819215aa403dfa73119828949d645c0c842a4
SHA256

7df557ef56a57102d5bf5a00cd91b63429700315f6aadf4c06742cd5628a37c8
SHA512

61f6b086d130208d0ac5cde74bbd1d63cb2ba500c48a3304b8dcca882eb8b9bdd965a2592465a19c188c2233df51528da9a09264c357920f2ac578edf01bfbac
SSDEEP

768:3pnP1kEN/NJy13VUU1pqSdynVMEUmyC45bVHhM569+V3CFeqi:NPGsSo+mq5bfn9SSFe

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ad6daae834de5ba721dec1a5406bfe52

Files

ad6daae834de5ba721dec1a5406bfe52
.exe windows:1 windows x86 arch:x86

a088f78e04dc6c7d9f5f44f1e165eb98

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
CreateEventA
CreateFileA
ExitProcess
FreeEnvironmentStringsA
GetACP
GetCPInfo
GetCommandLineA
GetCommandLineW
GetCurrentThreadId
GetEnvironmentStrings
GetFileType
GetModuleFileNameA
GetModuleFileNameW
GetModuleHandleA
GetOEMCP
GetProcAddress
GetStdHandle
GetVersion
LoadLibraryA
MultiByteToWideChar
SetConsoleCtrlHandler
SetEnvironmentVariableA
SetEnvironmentVariableW
SetStdHandle
SetUnhandledExceptionFilter
UnhandledExceptionFilter
VirtualAlloc
VirtualFree
VirtualQuery
WideCharToMultiByte
WriteFile

gdi32

GetStockObject

user32

CharUpperA
CreateWindowExA
DefWindowProcA
DialogBoxParamA
DispatchMessageA
EndDialog
GetMessageA
GetWindowLongA
LoadCursorA
LoadIconA
MessageBoxA
PostQuitMessage
RegisterClassA
SetWindowLongA
ShowWindow
TranslateMessage
UpdateWindow

Exports

Exports

_AboutDlgProc@16
_WindowProc@16

Sections

AUTO
Size: 21KB - Virtual size:

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 1KB - Virtual size:

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

DGROUP
Size: 3KB - Virtual size:

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: 2KB - Virtual size:

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size:

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size:

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rsrc
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

a088f78e04dc6c7d9f5f44f1e165eb98

Headers

File Characteristics

Imports

kernel32

gdi32

user32

Exports

Exports

Sections

AUTO Size: 21KB - Virtual size:

.idata Size: 1KB - Virtual size:

DGROUP Size: 3KB - Virtual size:

.bss Size: 2KB - Virtual size:

.edata Size: 512B - Virtual size:

.reloc Size: 1KB - Virtual size:

.rsrc Size: 7KB - Virtual size: 7KB

AUTO
Size: 21KB - Virtual size:

.idata
Size: 1KB - Virtual size:

DGROUP
Size: 3KB - Virtual size:

.bss
Size: 2KB - Virtual size:

.edata
Size: 512B - Virtual size:

.reloc
Size: 1KB - Virtual size:

.rsrc
Size: 7KB - Virtual size: 7KB