bd26513fc06a97c50ad27208c7786b1a

General

Target

bd26513fc06a97c50ad27208c7786b1a
Size

41KB
MD5

bd26513fc06a97c50ad27208c7786b1a
SHA1

8f5dca11d154084ef825cbe05577439c6673ec00
SHA256

b66edf9b8b23a8393b66bb453bc0f86446de4e09c9a55254040171039aeeada1
SHA512

ec0e15ab72bdd433f12d01af08e3e1f561e389b2f6ea75008628c4c11bd677fc27290676a3eafdc3344d3fa94e1ad0ffb5a1df407a2bcda640ef0fe4d67a8814
SSDEEP

768:WE960h6MXCOhnZOtxvbi8tGz/DSrXeUvDeJ7yYrDCu0++e0I1ZLSRyF9:No7Mx1kNi8EbDUXeUCJ+Y/NblljLsy

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bd26513fc06a97c50ad27208c7786b1a

Files

bd26513fc06a97c50ad27208c7786b1a
.exe windows:4 windows x86 arch:x86

d20f443b25ad032c2f8fd57af01c470a

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

BeginUpdateResourceW
ClearCommError
EnumResourceLanguagesA
EnumSystemLocalesA
ExitProcess
GetCalendarInfoA
GetCommModemStatus
GetConsoleMode
GetConsoleTitleA
GetCurrentThread
GetProcessHeaps
GetQueuedCompletionStatus
GetStringTypeW
IsValidLocale
LocalCompact
OpenEventA
OpenFileMappingA
PeekNamedPipe
ReadConsoleA
SetCommTimeouts
SetConsoleTitleA
WriteConsoleW
_hwrite
_lwrite
lstrcmpi
lstrcpy
lstrcpyW

user32

AlignRects
BlockInput
CheckMenuItem
CreateMenu
DdeCmpStringHandles
DdeFreeDataHandle
DdeImpersonateClient
DrawEdge
FillRect
FrameRect
GetAncestor
GetComboBoxInfo
GetKeyboardType
GetMessageTime
GetPropA
GetWindowTextLengthW
GetWindowThreadProcessId
IsZoomed
OemToCharBuffW
SendMessageTimeoutW
SetCaretPos
SetCursor
SetMenuContextHelpId
SetPropA
SetShellWindow
VkKeyScanA

gdi32

Arc
CopyMetaFileW
CreateDIBPatternBrush
CreatePolyPolygonRgn
DeviceCapabilitiesExA
EnumFontFamiliesExW
EnumFontFamiliesW
EnumFontsW
GetDIBits
GetEnhMetaFileA
GetICMProfileW
GetMapMode
GetMiterLimit
GetOutlineTextMetricsA
GetStockObject
GetTextExtentPoint32W
OffsetViewportOrgEx
Pie
PlayMetaFileRecord
PolyDraw
RectVisible
SelectClipPath
SetBrushOrgEx
SetDeviceGammaRamp
SetSystemPaletteUse
SetViewportExtEx
TextOutA
UnrealizeObject

Sections

.text
Size: 512B - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 39KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.xdata
Size: - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d20f443b25ad032c2f8fd57af01c470a

Headers

File Characteristics

Imports

kernel32

user32

gdi32

Sections

.text Size: 512B - Virtual size: 8KB

.data Size: 39KB - Virtual size: 56KB

.xdata Size: - Virtual size: 8KB

.rsrc Size: - Virtual size: 4KB

.text
Size: 512B - Virtual size: 8KB

.data
Size: 39KB - Virtual size: 56KB

.xdata
Size: - Virtual size: 8KB

.rsrc
Size: - Virtual size: 4KB