b78f2783cfe22d3fee9cbd7719e43ba1

General

Target

b78f2783cfe22d3fee9cbd7719e43ba1
Size

10KB
MD5

b78f2783cfe22d3fee9cbd7719e43ba1
SHA1

6b65cf184e0c4cbe49cd60e31e145bab69685f36
SHA256

90e82d1fd5c01de3698735247a2e9ec011a9e9d2dab2137d75c7d4e86ea50b04
SHA512

4f1305b573e9afb9e91f91b74262f5061ac4d852028a52a3b1e9f2ad59cdbc3588974f2962c38582beaeeaf9db5e94cdc239d60c026be9f7f1adefe766daebd8
SSDEEP

192:vqr+GkGa4PMUw2TqGy83i3R0VdZfYsYTh2iXfaW1bY1ki2ZZcRQ2r4VBH:e+veMca0V7YThBfa2YipPcRQ8

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b78f2783cfe22d3fee9cbd7719e43ba1

Files

b78f2783cfe22d3fee9cbd7719e43ba1
.exe windows:4 windows x86 arch:x86

8dc85a6fce04db73d8c542f454a3e18d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateEventW
CreateFileW
EnumCalendarInfoExA
EnumSystemLocalesW
ExitProcess
FindResourceW
FlushInstructionCache
GetFileAttributesExW
GetPrivateProfileSectionA
GetSystemTimeAdjustment
GetVersionExA
GetVersionExW
HeapCreate
InterlockedExchangeAdd
LocalFree
MoveFileW
QueryDosDeviceW
ReadConsoleInputW
ReadFileScatter
SetConsoleCP
SetLocaleInfoA
Thread32First
WriteTapemark
_llseek

user32

ActivateKeyboardLayout
CascadeChildWindows
CharPrevExA
CreateDialogIndirectParamW
CreateWindowStationW
DdeConnectList
DestroyIcon
DispatchMessageA
DrawFrame
DrawIconEx
EnableWindow
FillRect
GetKeyboardLayoutNameW
GetListBoxInfo
GetMenuContextHelpId
GetSysColor
GetUserObjectInformationA
MsgWaitForMultipleObjectsEx
RegisterDeviceNotificationW
SendMessageCallbackA
SetScrollPos
SetWindowWord
ValidateRect

gdi32

AngleArc
ArcTo
CheckColorsInGamut
CombineTransform
Ellipse
EnableEUDC
ExtCreateRegion
FloodFill
GdiFlush
GdiSetBatchLimit
GetAspectRatioFilterEx
GetBrushOrgEx
GetCharABCWidthsW
GetCharWidth32W
GetCharWidthFloatW
GetCharacterPlacementW
GetStockObject
GetTextCharset
LineTo
PolylineTo
Rectangle
ResetDCA
SetAbortProc
SetICMProfileA
SetLayout
SetMapperFlags
SetTextColor
StartDocW

Sections

.code
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

8dc85a6fce04db73d8c542f454a3e18d

Headers

File Characteristics

Imports

kernel32

user32

gdi32

Sections

.code Size: 512B - Virtual size: 4KB

.data Size: 8KB - Virtual size: 20KB

.rdata Size: 512B - Virtual size: 24KB

.code
Size: 512B - Virtual size: 4KB

.data
Size: 8KB - Virtual size: 20KB

.rdata
Size: 512B - Virtual size: 24KB