d389ca3ea4b96263724a23a7d7e18fda

General

Target

d389ca3ea4b96263724a23a7d7e18fda
Size

43KB
MD5

d389ca3ea4b96263724a23a7d7e18fda
SHA1

5522e4fafa76fc389f9d3dc3d594a2db85a826f9
SHA256

cc749221c302298c25d1725b9cf6fb0bef1ce4ccabe533c20614ea66df809715
SHA512

5740afb67135ce9fadcda9ef35a8ab15351385fb29eed8a495ba95a57fc2195d2d722e88292b87fbe7b5c8aa6b7e159135980bbbc756a804d63d8d5d4ee35ad0
SSDEEP

768:z84keOmenMMv8a/iMwCKI9NX5WXZPnEIGWyDInZIfPzMsUTJc4qkVu:Q4+bv8aNwCHj0EOyknZI3zOdc4G

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d389ca3ea4b96263724a23a7d7e18fda

Files

d389ca3ea4b96263724a23a7d7e18fda
.exe windows:4 windows x86 arch:x86

c42b1c77a0f05791a32d206987cdb645

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ConvertDefaultLocale
CreateToolhelp32Snapshot
CreateWaitableTimerA
EnumDateFormatsExW
ExitProcess
FlushViewOfFile
GetDefaultCommConfigA
GetExitCodeThread
GetNamedPipeHandleStateA
GetStartupInfoA
GlobalFree
GlobalReAlloc
LoadResource
OpenWaitableTimerW
PeekConsoleInputA
ReadConsoleOutputW
ReadConsoleW
SetCommConfig
SetConsoleCtrlHandler
SetCurrentDirectoryA
SetSystemPowerState
VerLanguageNameA
WriteFileGather
_lcreat
lstrcmpW

user32

BroadcastSystemMessage
DeferWindowPos
DrawCaptionTempW
DrawTextW
EnumDesktopsA
GetAltTabInfo
GetSysColorBrush
GetWindow
GetWindowModuleFileNameA
InvertRect
MapVirtualKeyW
PaintDesktop
RedrawWindow
ScrollWindowEx
SetClassWord
SetScrollInfo
SetWindowTextA
SubtractRect
TrackMouseEvent
UnhookWinEvent

gdi32

AddFontResourceW
ArcTo
CancelDC
ChoosePixelFormat
CreateColorSpaceA
CreateCompatibleBitmap
CreatePatternBrush
CreatePen
EnumFontFamiliesW
FillRgn
GdiComment
GdiSetBatchLimit
GetCharacterPlacementA
GetDeviceCaps
GetGraphicsMode
GetLogColorSpaceA
GetPath
GetTextCharsetInfo
OffsetViewportOrgEx
OffsetWindowOrgEx
PlayEnhMetaFile
SetDIBColorTable
SetViewportExtEx
StartDocW

Sections

.text
Size: 512B - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 41KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.xdata
Size: - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c42b1c77a0f05791a32d206987cdb645

Headers

File Characteristics

Imports

kernel32

user32

gdi32

Sections

.text Size: 512B - Virtual size: 16KB

.data Size: 41KB - Virtual size: 56KB

.xdata Size: - Virtual size: 12KB

.rsrc Size: - Virtual size: 12KB

.text
Size: 512B - Virtual size: 16KB

.data
Size: 41KB - Virtual size: 56KB

.xdata
Size: - Virtual size: 12KB

.rsrc
Size: - Virtual size: 12KB