c52f22ae8b62e0036a1b5b9848770109

General

Target

c52f22ae8b62e0036a1b5b9848770109
Size

123KB
MD5

c52f22ae8b62e0036a1b5b9848770109
SHA1

86171d4d0516dd39ae3ffe08f1790d139dfabb35
SHA256

40e4ccdeaad58f10fc1d8273903eb61602e31009d6c245e62cf323116b2ff194
SHA512

4a0a45affa2150319ab63f8b060157bdd5f266d88aad6ac3855b5aec264205ff46c46824b689c8609362c2421f035d950269a7860276335dff1e4b6682b91a63
SSDEEP

1536:/4vPDZ7ouiNWfzB1G8h2gQ3ymS1xM9CBEjNnYVAZLM9vXMjfvvdlqWfYAr/nMjqo:/WtiK/J21S1xi1oAq9PALqfAUq6rMwl

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c52f22ae8b62e0036a1b5b9848770109

Files

c52f22ae8b62e0036a1b5b9848770109
.dll windows:55991 windows x86 arch:x86

b1f967c0fc7b0923473c8bc5afc7021f

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

user32

DefWindowProcW
SendMessageW
GetWindowRect
LoadIconW
GetDC
ShowWindow
SetCapture
ShowWindow
ReleaseDC
SetTimer
GetSystemMetrics
GetWindowRect

gdi32

MoveToEx
CreateSolidBrush
GetTextMetricsW
CreateCompatibleBitmap
CreateSolidBrush
GetObjectW
CreateBitmap
DeleteObject

kernel32

lstrcmpiW
SetUnhandledExceptionFilter
lstrlenW
LoadLibraryA
GetCurrentProcess
VirtualAlloc
GetACP
GetCommandLineA
GetModuleHandleA
GetCommandLineW
FormatMessageW
SetEvent
ExitProcess
GetCurrentProcessId
FreeLibrary
LocalAlloc
GetCommandLineA
WaitForSingleObject
VirtualAlloc
VirtualFree
GetModuleHandleA
GetCurrentProcessId
GetModuleFileNameA

Exports

Exports

nYfhYyV
sGWWAEPzj
yTkLkBx
aRGOUnDgVr
ykCJK
bqXBAZxFEL

Sections

.text
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 102KB - Virtual size: 312KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b1f967c0fc7b0923473c8bc5afc7021f

Headers

File Characteristics

Imports

user32

gdi32

kernel32

Exports

Exports

Sections

.text Size: 16KB - Virtual size: 16KB

.data Size: 102KB - Virtual size: 312KB

.rdata Size: 1KB - Virtual size: 4KB

.edata Size: 512B - Virtual size: 4KB

.rsrc Size: 1KB - Virtual size: 4KB

.reloc Size: 512B - Virtual size: 4KB

.text
Size: 16KB - Virtual size: 16KB

.data
Size: 102KB - Virtual size: 312KB

.rdata
Size: 1KB - Virtual size: 4KB

.edata
Size: 512B - Virtual size: 4KB

.rsrc
Size: 1KB - Virtual size: 4KB

.reloc
Size: 512B - Virtual size: 4KB