d487321d682ecc609ace4efdcfb2be2d

General

Target

d487321d682ecc609ace4efdcfb2be2d
Size

36KB
MD5

d487321d682ecc609ace4efdcfb2be2d
SHA1

b852d70e6ca1c3ea911f0ca4ea8dc1f6b53c2b39
SHA256

935038a305b8dbe78c81e40d2734d1378dd278b5f379786a5642bb01e52f309b
SHA512

a5123f3485dcd14b2c89c73ce1817c0c7fa73c3ce9bb2e7c987576dbc0e5f60022b9dd8107780b253e95e79dcd3997b047187feae4605502071454cdf7d84517
SSDEEP

384:RMUaAoVLjMJQbYXC0pYpVHRH3fdUYFsTKrl7zFwUTq6r3uW8sQZ+OFCe8F52RC1y:GAkf10e7RPKNTKtxp+FFbRC1wIC

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d487321d682ecc609ace4efdcfb2be2d

Files

d487321d682ecc609ace4efdcfb2be2d
.exe windows:1 windows x86 arch:x86

ca8ac0664826451a4584617d82d7f7f5

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
CopyFileA
CreateFileA
CreateProcessA
ExitProcess
FreeLibrary
GetEnvironmentVariableA
GetModuleFileNameA
GetModuleHandleA
GetProcAddress
GetSystemDirectoryA
GetVersionExA
GlobalAlloc
GlobalFree
LoadLibraryA
RtlZeroMemory
SearchPathA
Sleep
WinExec
WriteFile
lstrcatA
lstrcmpiA
lstrcpyA
lstrlenA

user32

AppendMenuA
CloseWindow
CreateDialogParamA
CreatePopupMenu
CreateWindowExA
DefWindowProcA
DestroyWindow
DialogBoxParamA
DispatchMessageA
EnableMenuItem
EnableWindow
EndDialog
GetCursorPos
GetDlgItem
GetMessageA
GetWindowRect
IsDialogMessageA
KillTimer
LoadCursorA
LoadIconA
MessageBoxA
PostMessageA
PostQuitMessage
RegisterClassExA
SendMessageA
SetDlgItemTextA
SetForegroundWindow
SetTimer
SetWindowPos
SetWindowTextA
SystemParametersInfoA
TrackPopupMenu
TranslateMessage
wsprintfA

Sections

.data
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.code
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ca8ac0664826451a4584617d82d7f7f5

Headers

File Characteristics

Imports

kernel32

user32

Sections

.data Size: 7KB - Virtual size: 6KB

.code Size: 13KB - Virtual size: 13KB

.idata Size: 1KB - Virtual size: 1KB

.rsrc Size: 13KB - Virtual size: 13KB

.data
Size: 7KB - Virtual size: 6KB

.code
Size: 13KB - Virtual size: 13KB

.idata
Size: 1KB - Virtual size: 1KB

.rsrc
Size: 13KB - Virtual size: 13KB