c87852f655e7807083bda0c113ced5e8

Sharing

Copy URL Twitter E-mail

General

Target

c87852f655e7807083bda0c113ced5e8
Size

48KB
MD5

c87852f655e7807083bda0c113ced5e8
SHA1

8f513982d963184f3d8f08e5c49e2040a511c1b3
SHA256

8e3a555cc3e4605ca38758f7791594368c0c8c4b227b37be2ecf85b4bcd11e33
SHA512

96f4a5c9362a4001f33819b8971159a4b246926f6188e7bdf74403cef6f9a80eb0a5007bbec774d9f4317c80dec208e00c490c68cb6822bcb22f5eef64ad7deb
SSDEEP

384:OiiXN7wRDnsXi5hAOhDHjQf29MkzEGcDJvU7riyOaI:O/yRDnOyhAe7USMsEGa87rip

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c87852f655e7807083bda0c113ced5e8

Files

c87852f655e7807083bda0c113ced5e8
.exe windows:4 windows x86 arch:x86

b4e43a38510df764d966723299605066

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCommandLineA
SetLastError
lstrcpyA
lstrcmpA
FreeLibrary
GetModuleHandleA
GetFileSize
GetFileAttributesA
GlobalFree
HeapAlloc
CloseHandle
DeleteFileA
GetFileType
GetStringTypeW
GetLocalTime
GetModuleFileNameA
GetLastError
GetStdHandle
GetDateFormatA

user32

EndDialog
GetDC
LoadMenuA
AppendMenuA
CopyIcon
GetWindowTextLengthA
CreateIcon
DrawTextA
DialogBoxParamW
AppendMenuW
IsWindow
GetMenu
LoadCursorA
DrawIconEx
DrawIcon
CopyRect
DialogBoxParamW
CopyRect
CopyImage
InsertMenuA
GetCursor
DrawIcon
CreateIcon
GetDlgItem
BlockInput
AlignRects
GetDC
AppendMenuW
GetWindowTextLengthA
DrawTextA
DrawTextW
DrawIconEx
DialogBoxParamA
AppendMenuA
LoadCursorA

comctl32

ImageList_BeginDrag
ImageList_GetImageCount
ImageList_EndDrag
ImageList_DrawIndirect
ImageList_LoadImage
ImageList_AddMasked
ImageList_GetDragImage
ImageList_Destroy
ImageList_Copy
ImageList_Read
ImageList_LoadImageW
ImageList_Replace
ImageList_Draw
ImageList_DragLeave
InitCommonControls
ImageList_GetIconSize
ImageList_LoadImageA

advapi32

RegOpenKeyA
RegGetKeySecurity
RegCreateKeyExA
RegEnumKeyExA
RegDeleteValueW
RegEnumKeyExW
RegLoadKeyA
RegDeleteKeyA
RegQueryInfoKeyW
RegQueryValueA
RegEnumValueW
RegQueryValueW
RegEnumKeyW
RegEnumKeyA
RegOpenKeyExA
RegDeleteKeyW
RegReplaceKeyA
RegQueryValueExW

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 28KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 8KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsr�
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b4e43a38510df764d966723299605066

Headers

File Characteristics

Imports

kernel32

user32

comctl32

advapi32

Sections

.text Size: 4KB - Virtual size: 3KB

.data Size: 28KB - Virtual size: 24KB

.rdata Size: 8KB - Virtual size: 39KB

.rsr� Size: 4KB - Virtual size: 1KB

.text
Size: 4KB - Virtual size: 3KB

.data
Size: 28KB - Virtual size: 24KB

.rdata
Size: 8KB - Virtual size: 39KB

.rsr�
Size: 4KB - Virtual size: 1KB