d414ac161c6de705b8362c268cfb8c6a

General

Target

d414ac161c6de705b8362c268cfb8c6a
Size

55KB
MD5

d414ac161c6de705b8362c268cfb8c6a
SHA1

91b2fbf17587821477cd198d912ea6edfb7751c9
SHA256

4d7e2a91c61b4442cb81fd90dbe142479c21c0bb5788a344418c009641825eff
SHA512

e2a7f94fc6602b3fb45b833277b577ebd77b5e24eae0ba1a3ffaddefcb60152f48ed0bbc3f85aa25396f0249d6d9d45a56f9a655e63a05898028c27093c41e10
SSDEEP

1536:0zABDo5Y+K1ab25M7DHpJcRS5Y8QsTr2ZAQOJgao:0bO1a65M7zpJx59pCZVULo

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d414ac161c6de705b8362c268cfb8c6a

Files

d414ac161c6de705b8362c268cfb8c6a
.exe windows:4 windows x86 arch:x86

1b4d4eac2062070e14019fa68aba25d9

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CallNamedPipeA
CreateDirectoryExW
CreateProcessA
CreateProcessW
CreateWaitableTimerA
DisableThreadLibraryCalls
EndUpdateResourceA
EnumCalendarInfoExW
ExitProcess
GetDefaultCommConfigW
GetFileAttributesW
GetHandleInformation
GetLogicalDrives
GetOverlappedResult
GetSystemDefaultLangID
GetSystemTimeAdjustment
GetTempPathW
GetTickCount
GlobalAddAtomW
HeapLock
InterlockedExchangeAdd
MoveFileA
OpenFile
SetFileTime
SetTapePosition
WriteFileEx
WritePrivateProfileStructA
WriteProfileSectionW

user32

ChangeDisplaySettingsExA
ChangeMenuA
CharLowerA
CloseWindow
CopyAcceleratorTableW
CreateDialogIndirectParamA
DragObject
DrawTextExW
GetActiveWindow
GetClassNameA
GetKeyboardLayoutList
GetMessagePos
GetTabbedTextExtentW
GetThreadDesktop
GetUserObjectInformationA
GetWindowDC
IntersectRect
LockWindowStation
OpenInputDesktop
ScrollDC
ScrollWindow
SetPropW
ToAscii
WinHelpA

gdi32

CopyEnhMetaFileW
CreateBrushIndirect
CreateCompatibleDC
CreateDIBPatternBrushPt
CreateEllipticRgn
CreateFontIndirectW
EnumFontFamiliesExA
EnumFontFamiliesW
ExtCreatePen
ExtSelectClipRgn
FloodFill
GdiPlayDCScript
GetBkMode
GetBoundsRect
GetCharABCWidthsW
GetColorAdjustment
GetEnhMetaFileBits
GetEnhMetaFilePaletteEntries
GetGlyphOutlineW
GetMetaFileBitsEx
GetRandomRgn
LineTo
PlgBlt
PolyTextOutA
Polyline
SetTextColor
StartDocA
StrokeAndFillPath
TextOutW

Sections

.text
Size: 512B - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1b4d4eac2062070e14019fa68aba25d9

Headers

File Characteristics

Imports

kernel32

user32

gdi32

Sections

.text Size: 512B - Virtual size: 8KB

.data Size: 8KB - Virtual size: 24KB

.idata Size: - Virtual size: 4KB

.rsrc Size: 1024B - Virtual size: 4KB

.text
Size: 512B - Virtual size: 8KB

.data
Size: 8KB - Virtual size: 24KB

.idata
Size: - Virtual size: 4KB

.rsrc
Size: 1024B - Virtual size: 4KB