b4bd2835281ec6411dcf15aa7090b592

Sharing

Copy URL Twitter E-mail

General

Target

b4bd2835281ec6411dcf15aa7090b592
Size

35KB
MD5

b4bd2835281ec6411dcf15aa7090b592
SHA1

edb1a80ba41b2ca0875ba38753a73f1be62285b4
SHA256

c12dddce0a4571f61e6904e0341a038207eb49db58594fb6fcc2f4befacb148e
SHA512

1d489d82f4bddcd6e77d7c3ddf84208b146222d9eb270376c52bf8f6b981fae0d058a5871f79c47ad7aca4d89f483bd77ee52907910361a6aaabea9d2f00e6e3
SSDEEP

768:JlomBCtSF7KYnJMhctxh6+b3w3XqutFhBKTGWKMgKKtY:JimBCuKYnJMhctL69XhF+TSV

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b4bd2835281ec6411dcf15aa7090b592

Files

b4bd2835281ec6411dcf15aa7090b592
.exe windows:4 windows x86 arch:x86

1b26a34db6943393104870f60af00b1c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegDeleteValueW
RegOpenKeyExA
RegCreateKeyExA
RegQueryValueW
RegOpenKeyW
RegDeleteValueA
RegEnumKeyExA
RegEnumValueA
RegFlushKey
RegOpenKeyExW
RegOpenKeyA
RegReplaceKeyA
RegLoadKeyW
RegDeleteKeyW
RegEnumKeyW
RegQueryValueExA
RegDeleteKeyA
RegEnumKeyA
RegEnumValueW
RegCreateKeyW
RegReplaceKeyA
RegOpenKeyExW
RegQueryValueExW
RegQueryInfoKeyW
RegEnumValueW
RegQueryInfoKeyA
RegCreateKeyExA
RegQueryValueW
RegDeleteKeyA
RegFlushKey
RegDeleteValueW
RegEnumKeyExW
RegOpenKeyExA
RegDeleteKeyW
RegOpenKeyA
RegEnumKeyA
RegLoadKeyA
RegEnumKeyExA
RegLoadKeyA
RegEnumValueA
RegDeleteKeyW
RegOpenKeyW
RegQueryInfoKeyW
RegCreateKeyExW
RegCreateKeyW
RegQueryInfoKeyA
RegOpenKeyExA
RegCreateKeyExA
RegEnumKeyW
RegEnumKeyExW
RegReplaceKeyA
RegDeleteValueW
RegFlushKey
RegLoadKeyW
RegGetKeySecurity
RegQueryValueW
RegQueryValueExW
RegQueryValueA
RegEnumKeyA

user32

CopyImage
GetMenu
DialogBoxParamA
IsMenu
CopyIcon
CloseWindow
AlignRects
GetWindowTextA
GetWindowTextLengthA
InsertMenuA
EndDialog
AppendMenuA
AppendMenuW
IsWindow
DrawTextA
CalcMenuBar
DrawIcon
LoadMenuA
DialogBoxParamW
GetWindowTextLengthA
CopyIcon
BlockInput
CopyImage
InsertMenuA
DialogBoxParamA
EndDialog
IsWindow
AppendMenuW
CalcMenuBar
CloseWindow
GetWindowTextA
AlignRects
GetDC
DrawIcon
DialogBoxParamW
CreateIcon
GetWindowTextLengthA
IsMenu
GetWindowTextA
EndDialog
AppendMenuA
GetDlgItem
DrawIconEx
AlignRects
GetFocus
CopyRect
LoadMenuA
CreateIcon
BlockInput
CloseWindow
CopyImage

gdi32

AbortPath
CopyMetaFileA
DeleteDC
DeleteObject
GetClipBox
AddFontResourceA
GetCurrentPositionEx
AddFontResourceExW
AddFontResourceExA
GetPixel
ClearBitmapAttributes
SetTextColor
CreateSolidBrush
AddFontResourceW
ClearBrushAttributes
BitBlt
GetClipBox
AddFontResourceExA
CloseFigure
AddFontMemResourceEx
AddFontResourceExW
GetCurrentPositionEx
CreateSolidBrush
CancelDC
ClearBrushAttributes
CloseMetaFile
RestoreDC
BeginPath
GetBrushOrgEx
ExtTextOutA
ClearBitmapAttributes
CopyMetaFileA
DeleteObject
BitBlt
AddFontResourceTracking
CloseFigure
GetPixel
ClearBitmapAttributes
CopyMetaFileA
AddFontResourceA
CancelDC
BeginPath
ExtTextOutA
SetTextColor
AddFontResourceExA
ClearBrushAttributes
DeleteObject
ExcludeClipRect
CreateSolidBrush
AddFontResourceW
AddFontResourceExW
GetClipBox
GetPixel
GetCurrentPositionEx
GetBrushOrgEx
AbortPath

comctl32

ImageList_Replace
ImageList_GetIcon
ImageList_Read
ImageList_DrawEx
ImageList_DrawIndirect
ImageList_Destroy
ImageList_DragLeave
ImageList_GetIconSize
InitCommonControls
ImageList_GetDragImage
ImageList_GetImageCount
ImageList_GetImageInfo
ImageList_AddIcon
ImageList_LoadImageW
ImageList_GetImageRect
ImageList_ReplaceIcon
ImageList_LoadImage
ImageList_DragEnter
ImageList_AddMasked
ImageList_BeginDrag
ImageList_Draw
ImageList_EndDrag
ImageList_Replace
ImageList_Remove
ImageList_Create
ImageList_Merge
ImageList_Read
ImageList_Draw
ImageList_DragShowNolock
ImageList_GetIconSize
ImageList_DragLeave
ImageList_GetDragImage
ImageList_BeginDrag
ImageList_Destroy
ImageList_EndDrag
ImageList_ReplaceIcon
ImageList_DrawIndirect
ImageList_GetIcon
ImageList_Copy
ImageList_GetImageInfo
ImageList_LoadImageW
InitCommonControls
ImageList_GetImageRect
ImageList_DragMove
ImageList_AddMasked
ImageList_DrawEx

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 23KB - Virtual size: 240KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 1002B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1b26a34db6943393104870f60af00b1c

Headers

File Characteristics

Imports

advapi32

user32

gdi32

comctl32

Sections

.text Size: 4KB - Virtual size: 3KB

.rdata Size: 6KB - Virtual size: 5KB

.data Size: 23KB - Virtual size: 240KB

.rsrc Size: 1024B - Virtual size: 1002B

.text
Size: 4KB - Virtual size: 3KB

.rdata
Size: 6KB - Virtual size: 5KB

.data
Size: 23KB - Virtual size: 240KB

.rsrc
Size: 1024B - Virtual size: 1002B