b572d9fd15c611e3392bfc286552759f

General

Target

b572d9fd15c611e3392bfc286552759f
Size

131KB
MD5

b572d9fd15c611e3392bfc286552759f
SHA1

d671162ea389bb46cf16f5472ea5eed497c99abd
SHA256

e2eda8653d6b84e5db042fab00348a2ea400883fc2b2eb1b52026c4404e1e3ef
SHA512

729d2cc08f0c955a968a2d2c4147ecd38ff3306d97a73ac40c0279461ab02216f0d3854fe4eb091f0439a47b14a27f1671877f3b0306dc5bcd82dbc53bb15ca5
SSDEEP

1536:STdkWAlumzIwdmmHxJTB9WuoMhPyxDb6e5g/yGAZUI5dJ+Qe70JG30Zk5+kuDOaG:uxSuwLpVfPMZf5P+QewJGmk5raBkmQ0

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b572d9fd15c611e3392bfc286552759f

Files

b572d9fd15c611e3392bfc286552759f
.exe windows:4 windows x86 arch:x86

cbc3a7249c4653c40dc33ecbb27f7240

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

MoveToEx
PlayEnhMetaFile
GetCharWidth32A
GetDeviceCaps
GetEnhMetaFilePaletteEntries
SetBkMode
SetBkColor
OffsetViewportOrgEx
SetColorSpace
CreatePatternBrush
GetTextMetricsA
DeleteDC
DPtoLP
StartPage
DeleteObject
GetPaletteEntries
CreatePen
SelectPalette
SetTextColor
RectVisible
PatBlt
LPtoDP
GetStockObject
GetClipBox
SetViewportOrgEx
MaskBlt
GetBrushOrgEx
Rectangle
GetDCOrgEx
EndDoc
ScaleViewportExtEx
Chord
SaveDC
BitBlt
SetMapMode
StretchBlt
EndPage
UnrealizeObject
PtVisible
LineTo
SetWindowExtEx
CreateBitmap
SetBrushOrgEx
SelectClipPath
SetROP2
BeginPath
IntersectClipRect
RestoreDC
CreateCompatibleBitmap

user32

CharNextA

kernel32

GetThreadLocale
lstrcmpA
GetLastError
GetACP
DeleteFileW
GetCurrentThread
RemoveDirectoryA
GetCurrentProcess
VirtualAlloc
lstrlenW
GetTickCount
DeleteFileA
GetCurrentThreadId
GetCommandLineA
GetUserDefaultLangID
GetProcessHeap
lstrlenA
GetConsoleOutputCP
CopyFileA
GetModuleHandleW
SetLastError
lstrcmpiW
IsDebuggerPresent
GetModuleHandleA
lstrcmpiA
GetCurrentProcessId
GetCommandLineW
SetCurrentDirectoryA
GetOEMCP
GlobalFindAtomW
GetVersion
MulDiv
GlobalFindAtomA

Sections

.text
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 101KB - Virtual size: 100KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

cbc3a7249c4653c40dc33ecbb27f7240

Headers

File Characteristics

Imports

gdi32

user32

kernel32

Sections

.text Size: 11KB - Virtual size: 10KB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 101KB - Virtual size: 100KB

.rsrc Size: 16KB - Virtual size: 15KB

.text
Size: 11KB - Virtual size: 10KB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 101KB - Virtual size: 100KB

.rsrc
Size: 16KB - Virtual size: 15KB