d50e3f1c239ba2582ea24393d9dd0aba

General

Target

d50e3f1c239ba2582ea24393d9dd0aba
Size

181KB
MD5

d50e3f1c239ba2582ea24393d9dd0aba
SHA1

cd8587b19bcf4266bc4171a34458b2330f5f482c
SHA256

4bbde72b26e74e07aaccb0c8911dc9eca88d97151ef755cfb758e4440470fa2c
SHA512

5d6631b53e3845c8aff6343763362a231e692ef6e24a01a8029cbb259f1370a468becb788c5b9cfad05ea7ba6876bde6fbdd34f2a4ee4c9952774967721cf3ac
SSDEEP

3072:c9GywGP4PmHLHRHVYXINge96arrR/ptt33hoR3UX0JnGE9R3lJlQerw3EM6BVkPJ:UGyDNVM1CRR/F3hoR3UX0JnGE9DJlQl/

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d50e3f1c239ba2582ea24393d9dd0aba

Files

d50e3f1c239ba2582ea24393d9dd0aba
.exe windows:4 windows x86 arch:x86

3797c0247b4c6ac41753aa20d2858a4b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetSystemMetrics
GetDC
GetDesktopWindow
TranslateMessage
GetParent
CharNextA

gdi32

SetTextColor
CreatePalette
SetStretchBltMode
PatBlt
GetClipBox
SetMapMode
GetObjectA
GetPixel
CreateCompatibleDC
RectVisible
CreateSolidBrush
RestoreDC
DeleteObject
SetTextAlign
SaveDC
GetStockObject
SelectObject
CreateFontIndirectA
CreatePen
GetNearestPaletteIndex
SelectPalette
DeleteDC
GetDeviceCaps
LineTo
GetTextMetricsA

kernel32

IsDebuggerPresent
GetTickCount
GlobalFindAtomW
RemoveDirectoryA
lstrcmpiW
DeleteFileA
GetACP
lstrcmpiA
GetModuleHandleW
GlobalFindAtomA
lstrlenW
MulDiv
CopyFileA
GetVersion
GetCurrentThread
GetCommandLineW
GetCurrentProcessId
GetCurrentProcess
RemoveDirectoryW
GetUserDefaultLangID
lstrcmpA
DeleteFileW
lstrlenA
GetCommandLineA
GetModuleHandleA
ExitProcess
GetCurrentThreadId
GetOEMCP
GetProcessHeap
QueryPerformanceCounter
GetThreadLocale
GetStartupInfoA
GetDriveTypeA
GetWindowsDirectoryA
SetCurrentDirectoryA
GetConsoleOutputCP
VirtualAlloc
VirtualFree

glu32

gluQuadricCallback

Sections

.text
Size: 21KB - Virtual size: 21KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 67KB - Virtual size: 66KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3797c0247b4c6ac41753aa20d2858a4b

Headers

File Characteristics

Imports

user32

gdi32

kernel32

glu32

Sections

.text Size: 21KB - Virtual size: 21KB

.data Size: 67KB - Virtual size: 66KB

.rsrc Size: 12KB - Virtual size: 12KB

.text
Size: 21KB - Virtual size: 21KB

.data
Size: 67KB - Virtual size: 66KB

.rsrc
Size: 12KB - Virtual size: 12KB