c465b6beb487ae62a66288c936f613df

Sharing

Copy URL Twitter E-mail

General

Target

c465b6beb487ae62a66288c936f613df
Size

84KB
MD5

c465b6beb487ae62a66288c936f613df
SHA1

15a1aeaa01d667300571aba997b14898c8c3a1b6
SHA256

99858ff11cffc6336f2a5d891c98a4a2e303d410a174ca8b42494d52d3e313b1
SHA512

9e3791718b806e5fd5a4cfa822522eda3fb1b0878594b7364e9c22cf001b14cfe22ec8daa2dcc5fce318d0d43662b8590429e0d3e561c7adb8959eeba5d68ece
SSDEEP

1536:VCHuTecjKdBgmPhIjDtVyxVRAOvURiNnF4fWv/g:wgayjZoli4NvI

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c465b6beb487ae62a66288c936f613df

Files

c465b6beb487ae62a66288c936f613df
.exe windows:4 windows x86 arch:x86

7b7448d912e9fc3868caf843bb1c246a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegEnumKeyW
RegLoadKeyA
RegDeleteValueW
RegDeleteKeyA
RegQueryValueExA
RegDeleteKeyW
RegEnumKeyExA
RegQueryInfoKeyA
RegDeleteValueA
RegEnumValueA
RegLoadKeyW
RegOpenKeyW
RegCreateKeyExA
RegEnumKeyExW
RegQueryValueW
RegOpenKeyA
RegEnumValueW
RegGetKeySecurity
RegQueryInfoKeyW
RegCreateKeyExW

gdi32

CancelDC
ExcludeClipRect
AddFontResourceExA
RestoreDC
AddFontResourceTracking
CreateSolidBrush
GetClipBox
AddFontResourceW
ClearBrushAttributes
ClearBitmapAttributes
CopyMetaFileA
GetPixel
GetPixel
GetBitmapBits
DeleteDC
GetCurrentPositionEx
ExtTextOutA
AddFontResourceA
BeginPath

kernel32

GetCommandLineA
GetDateFormatA
GetModuleFileNameA
GetModuleHandleA
lstrlenA
GetFileAttributesA
GetStdHandle
GetStringTypeW
HeapAlloc
WideCharToMultiByte
SetLastError
GlobalAlloc
GetLastError
GetFullPathNameA
GlobalFree
lstrcmpiA
lstrcmpA
lstrcpyA
GetFileType
GetFileSize

user32

GetWindowTextA
AppendMenuW
LoadCursorA
DrawTextW
GetCursor
DrawIconEx
BlockInput
DialogBoxParamA
InsertMenuA
DrawTextA
IsMenu
LoadMenuA
CreateIcon
GetFocus
GetMenu
CopyImage

comctl32

ImageList_LoadImageW
ImageList_DrawEx
ImageList_Create
ImageList_Destroy
ImageList_GetDragImage
ImageList_Draw
ImageList_AddMasked
ImageList_DrawIndirect
ImageList_GetImageRect
ImageList_GetIcon
ImageList_DragEnter
ImageList_Copy
InitCommonControls
ImageList_Merge
ImageList_Remove
ImageList_DragLeave
ImageList_LoadImage
ImageList_GetIconSize

Sections

.text
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 64KB - Virtual size: 63KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 113KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7b7448d912e9fc3868caf843bb1c246a

Headers

File Characteristics

Imports

advapi32

gdi32

kernel32

user32

comctl32

Sections

.text Size: 8KB - Virtual size: 4KB

.data Size: 64KB - Virtual size: 63KB

.rdata Size: 4KB - Virtual size: 113KB

.rsrc Size: 4KB - Virtual size: 2KB

.text
Size: 8KB - Virtual size: 4KB

.data
Size: 64KB - Virtual size: 63KB

.rdata
Size: 4KB - Virtual size: 113KB

.rsrc
Size: 4KB - Virtual size: 2KB