c47904d2adb061d6915b6bc957ddafbf

General

Target

c47904d2adb061d6915b6bc957ddafbf
Size

100KB
MD5

c47904d2adb061d6915b6bc957ddafbf
SHA1

47c7e4e3c4bc69b1fdd6d8877c6826dcb5457f99
SHA256

cd827da880cfde720eb42ccd55b9259c03d4c946bc5cf51991f314cc1bf749a4
SHA512

1c67ec925ae695946ef54aa64feeb7218d6095320ead29353bee6976d096df2e8dc5913e10cffe61f133dc8a4e04d427ba3590e45d7546767011040b8c9da3ba
SSDEEP

1536:zpuh/QNaw6t/4DhmzsnGx6klTxvfCQg7jRsG8CMhcgpZh+hl4H+UJ8ZAliIfOT:tuuzDkFlKXRsG8TBSnUJEA4V

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c47904d2adb061d6915b6bc957ddafbf

Files

c47904d2adb061d6915b6bc957ddafbf
.exe windows:4 windows x86 arch:x86

7902f11d7c8f622d3eac0c1bfddb094f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

ImageList_AddMasked
ImageList_BeginDrag
ImageList_GetIconSize
ImageList_DragShowNolock
ImageList_AddIcon
ImageList_GetImageInfo
ImageList_Draw
ImageList_Copy
ImageList_DrawEx
ImageList_EndDrag
ImageList_Remove
ImageList_DrawIndirect
ImageList_DragEnter
ImageList_GetDragImage
ImageList_LoadImageA
ImageList_LoadImageW
ImageList_Replace
InitCommonControls
ImageList_DragLeave

kernel32

SetLastError
GetStringTypeA
lstrcpynA
lstrcpyA
WideCharToMultiByte
GetLastError
lstrcmpA
GetFileType
GetModuleFileNameA
GetStdHandle
GetCommandLineA
GetCPInfo
lstrcmpiA
GlobalFree
GetLocalTime
Sleep

user32

EndDialog
AlignRects
DialogBoxParamA
DrawTextW
DrawIconEx
DrawIcon
GetWindowTextA
GetFocus
GetDC
IsMenu
AppendMenuW
DrawTextA
BlockInput
GetMenu
CopyRect
InsertMenuA

advapi32

RegOpenKeyExA
RegOpenKeyExW
RegQueryInfoKeyW
RegEnumKeyW
RegCreateKeyExW
RegGetKeySecurity
RegEnumValueW
RegQueryValueW
RegQueryValueExW
RegReplaceKeyA
RegLoadKeyW
RegEnumValueA
RegFlushKey
RegEnumKeyA
RegDeleteValueA
RegOpenKeyW
RegOpenKeyA

Sections

.text
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 68KB - Virtual size: 66KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 54KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7902f11d7c8f622d3eac0c1bfddb094f

Headers

File Characteristics

Imports

comctl32

kernel32

user32

advapi32

Sections

.text Size: 8KB - Virtual size: 4KB

.data Size: 68KB - Virtual size: 66KB

.rdata Size: 4KB - Virtual size: 54KB

.rsrc Size: 16KB - Virtual size: 16KB

.text
Size: 8KB - Virtual size: 4KB

.data
Size: 68KB - Virtual size: 66KB

.rdata
Size: 4KB - Virtual size: 54KB

.rsrc
Size: 16KB - Virtual size: 16KB