b79acbddbbb8dc786c2503ef652d9a71

General

Target

b79acbddbbb8dc786c2503ef652d9a71
Size

42KB
MD5

b79acbddbbb8dc786c2503ef652d9a71
SHA1

e2d998220197095413b91dbfd1d6f196f62e1058
SHA256

a9c4b730de628a43c6d46b1520e78ab63fc749c2923f708daf9c3274ef764945
SHA512

5130b3d2b757b3890de41fe32950b5accb5fd2436e0fe8d052b8705c4b8f079524105b23ceea1c6aefb97040829102e2218239b952cf04a70399c1f8ca61c8c9
SSDEEP

768:mDieVeebrstsBgJS7zSPTYNkrZwxtQIa3XFFvGPh36H07N85LR9wv/Cre3lO:mDiarsKgUW0NbPQh31NGkk851U/CMl

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b79acbddbbb8dc786c2503ef652d9a71

Files

b79acbddbbb8dc786c2503ef652d9a71
.exe windows:4 windows x86 arch:x86

6c92ac824d335c88f464db03884288ec

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

BuildCommDCBAndTimeoutsW
CreateEventW
CreateWaitableTimerA
ExitProcess
FindResourceExW
GetFileAttributesW
GetThreadSelectorEntry
GlobalFindAtomW
GlobalSize
OpenEventA
OpenSemaphoreA
PeekConsoleInputW
RtlZeroMemory
SetCommMask
SetCurrentDirectoryA
SetHandleInformation
WriteConsoleInputA
WritePrivateProfileStructW
lstrcmp
lstrlen

user32

BeginDeferWindowPos
CascadeWindows
ChangeDisplaySettingsA
ChangeMenuA
CreateDialogIndirectParamA
DdeEnableCallback
DestroyIcon
DialogBoxIndirectParamA
GetInternalWindowPos
GetMenuContextHelpId
GetMenuStringW
HideCaret
IMPQueryIMEW
LoadIconA
MapWindowPoints
OpenDesktopW
PaintDesktop
PostMessageA
PostThreadMessageA
RegisterLogonProcess
RegisterSystemThread
RegisterTasklist
ReleaseCapture
SendNotifyMessageW
SetCaretPos
SetWindowsHookExA
WindowFromDC

gdi32

AddFontResourceW
AngleArc
AnimatePalette
CreateBrushIndirect
CreateEnhMetaFileA
CreateFontIndirectA
EndPage
EnumEnhMetaFile
EnumFontsA
EnumObjects
Escape
ExtCreatePen
ExtTextOutW
GetCharABCWidthsFloatA
GetCharABCWidthsW
GetCharWidthA
GetDCOrgEx
GetOutlineTextMetricsA
GetWindowOrgEx
GetWorldTransform
PolyTextOutA
RectInRegion
SetViewportExtEx
StartDocW

Sections

.text
Size: 512B - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 41KB - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6c92ac824d335c88f464db03884288ec

Headers

File Characteristics

Imports

kernel32

user32

gdi32

Sections

.text Size: 512B - Virtual size: 8KB

.data Size: 41KB - Virtual size: 44KB

.idata Size: - Virtual size: 12KB

.rsrc Size: - Virtual size: 12KB

.text
Size: 512B - Virtual size: 8KB

.data
Size: 41KB - Virtual size: 44KB

.idata
Size: - Virtual size: 12KB

.rsrc
Size: - Virtual size: 12KB