bb22fee99a6e6b1fe5864dcd0b939c1a

General

Target

bb22fee99a6e6b1fe5864dcd0b939c1a
Size

87KB
MD5

bb22fee99a6e6b1fe5864dcd0b939c1a
SHA1

c59eeae6e096bbc378cf0d41efe6daa2e30eed0a
SHA256

b5ae745622193a6a16b5ad5741f7836fb89559f963013e3e905e834af4bf803f
SHA512

d27e24730330f37531ebecbc73297787eb2545da39f7935f4b2cf143f0fccc37cea5d246fb86399c46bbded024d006d304a8d5962f07e40c52ebe6edd39641c3
SSDEEP

1536:6iD9bWRsx15PneB1v0rUZzgGmR7vPPByD6vnXORR:tbyQZeaUNo7pyDGn+RR

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bb22fee99a6e6b1fe5864dcd0b939c1a

Files

bb22fee99a6e6b1fe5864dcd0b939c1a
.exe windows:4 windows x86 arch:x86

476a0fc4efe405a9ffedc3b180cdbbb6

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegCreateKeyW
RegDeleteKeyW
RegSetValueExW
RegSetValueW
RegOpenKeyExW
RegCloseKey
RegQueryValueExW
RegEnumKeyExW

comctl32

ImageList_DragLeave
ImageList_DragMove
ImageList_DragEnter

user32

TrackPopupMenuEx
DestroyMenu
FindWindowA
ClipCursor
RedrawWindow
CreatePopupMenu
GetDesktopWindow

gdiplus

GdipCreateBitmapFromFile
GdipGetImageHeight
GdipGetImageWidth
GdipGetImagePixelFormat
GdipDisposeImage

gdi32

CreateCompatibleDC
CreateDIBSection
LineTo
GetObjectType
SelectObject
SetStretchBltMode
DeleteDC
BitBlt
CreatePen
StretchBlt
CreateDCW
CreateBitmap

ole32

CoInitialize
CoUninitialize
CoFreeUnusedLibraries
StringFromGUID2
CoCreateInstance

kernel32

FileTimeToSystemTime
GetVersionExA
TransmitCommChar
LoadLibraryW
EnumResourceNamesW
ExitProcess
ExitProcess
LocalFree
LocalAlloc
GetModuleFileNameA

winmm

timeGetTime

msimg32

AlphaBlend
TransparentBlt

Sections

.text
Size: 67KB - Virtual size: 67KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsr
Size: 512B - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

476a0fc4efe405a9ffedc3b180cdbbb6

Headers

File Characteristics

Imports

advapi32

comctl32

user32

gdiplus

gdi32

ole32

kernel32

winmm

msimg32

Sections

.text Size: 67KB - Virtual size: 67KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 16KB - Virtual size: 16KB

.rsr Size: 512B - Virtual size: 16KB

.text
Size: 67KB - Virtual size: 67KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 16KB - Virtual size: 16KB

.rsr
Size: 512B - Virtual size: 16KB