03d4ad81b91ffa493c8425a8d9a96c7770dd1ce24c10408c6d21b1bcc655f2dc

Sharing

Copy URL Twitter E-mail

General

Target

03d4ad81b91ffa493c8425a8d9a96c7770dd1ce24c10408c6d21b1bcc655f2dc
Size

53KB
MD5

59535bc43ee453990a3e88f73640fac2
SHA1

cf6ec4cbb895949ea0982f090b3bfa6aa0ae7df3
SHA256

03d4ad81b91ffa493c8425a8d9a96c7770dd1ce24c10408c6d21b1bcc655f2dc
SHA512

93b37e6ea821679cd48b432734161651fe60fff435e4d0c7ddb48d3a4c99ac9304c5868c4f7cc974c9c82edf2fb02d07dd2276b0aff85b3682fcda6a9bb3f0b0
SSDEEP

1536:MvrHm9JV0QoJJhcdgymkBmkZ1aAEcX0CI8Efx:IC9JWhcdtmkSuBI8Ax

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
03d4ad81b91ffa493c8425a8d9a96c7770dd1ce24c10408c6d21b1bcc655f2dc

Files

03d4ad81b91ffa493c8425a8d9a96c7770dd1ce24c10408c6d21b1bcc655f2dc
.exe windows:4 windows x86 arch:x86

18f545dcc4e72fa1cb23ccb816327da3

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

AllocateAndInitializeSid
CloseServiceHandle
DeleteService
OpenSCManagerA
QueryServiceConfig2A
RegDeleteKeyA
RegEnumKeyExA
RegFlushKey
RegQueryValueExA
StartServiceA

kernel32

CompareStringA
CreateEventA
CreateFileA
CreateMutexA
CreateToolhelp32Snapshot
DeleteFileA
DisableThreadLibraryCalls
EnterCriticalSection
ExitProcess
ExitThread
FileTimeToLocalFileTime
FindFirstFileA
FreeLibrary
GetACP
GetConsoleCP
GetCurrentProcess
GetCurrentProcessId
GetCurrentThreadId
GetEnvironmentStringsA
GetFileSize
GetFileType
GetFullPathNameA
GetLastError
GetLocalTime
GetModuleFileNameA
GetOEMCP
GetPrivateProfileSectionNamesA
GetProcessHeap
GetShortPathNameA
GetStringTypeA
GetSystemTimeAsFileTime
GetTempFileNameA
GetTempPathA
GetThreadTimes
GetUserDefaultLCID
GetVersionExA
GetWindowsDirectoryA
GlobalLock
GlobalUnlock
HeapFree
HeapReAlloc
InterlockedCompareExchange
InterlockedDecrement
InterlockedIncrement
IsBadWritePtr
IsDebuggerPresent
IsValidCodePage
LCMapStringA
LeaveCriticalSection
LoadLibraryA
LocalFree
MapViewOfFile
QueryPerformanceCounter
RaiseException
ReadFile
ReadProcessMemory
ReleaseMutex
RtlUnwind
SearchPathA
SetEnvironmentVariableA
SetErrorMode
SetFilePointer
SetLastError
SetUnhandledExceptionFilter
SizeofResource
SystemTimeToFileTime
TerminateProcess
TlsGetValue
TlsSetValue
UnhandledExceptionFilter
VirtualAlloc
VirtualProtect
VirtualQuery
WideCharToMultiByte
WritePrivateProfileStringA
lstrcmpA
lstrcmpiA
lstrlenA

user32

CharLowerA
CharPrevA
ClientToScreen
CreatePopupMenu
DestroyIcon
DrawFocusRect
DrawIcon
EnableMenuItem
GetAsyncKeyState
GetDesktopWindow
GetDlgItem
GetDlgItemTextA
GetForegroundWindow
GetKeyState
GetMessagePos
GetProcessWindowStation
GetWindowTextA
GetWindowTextLengthA
LoadBitmapA
LoadIconA
MessageBeep
MessageBoxA
MsgWaitForMultipleObjects
ReleaseCapture
SendMessageA
SetMenu
SetWindowRgn
SystemParametersInfoA
TrackPopupMenu

version

GetFileVersionInfoA
GetFileVersionInfoSizeA
VerQueryValueA

Sections

.text
Size: 18KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.INIT
Size: 13KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 15KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

18f545dcc4e72fa1cb23ccb816327da3

Headers

File Characteristics

Imports

advapi32

kernel32

user32

version

Sections

.text Size: 18KB - Virtual size: 20KB

.INIT Size: 13KB - Virtual size: 24KB

.data Size: 512B - Virtual size: 4KB

.rdata Size: 512B - Virtual size: 4KB

.idata Size: 3KB - Virtual size: 4KB

.edata Size: 15KB - Virtual size: 16KB

.rsrc Size: 1024B - Virtual size: 4KB

.text
Size: 18KB - Virtual size: 20KB

.INIT
Size: 13KB - Virtual size: 24KB

.data
Size: 512B - Virtual size: 4KB

.rdata
Size: 512B - Virtual size: 4KB

.idata
Size: 3KB - Virtual size: 4KB

.edata
Size: 15KB - Virtual size: 16KB

.rsrc
Size: 1024B - Virtual size: 4KB