d58b4f73e3e8a0abd7199758863f10d4

Sharing

Copy URL Twitter E-mail

General

Target

d58b4f73e3e8a0abd7199758863f10d4
Size

92KB
MD5

d58b4f73e3e8a0abd7199758863f10d4
SHA1

4c92f402f338fa4add2f808adff7d2149dbc4b6d
SHA256

b82835339cdb9ed87945e8092c98a612ae5dd95e37dad1ba35e4b44e4cd1faaf
SHA512

bcead52f8e7cecc7c7ff273e5743a7b4abae548265ca4e0241f59163f69a79551a9e6d3664d250744cb5a484fe10506c10ab2060fdc31ee269efa5f663509f0d
SSDEEP

1536:9esSeD/g5Y8Li+anohLhya8EwQrzAiWYIZoadU0BsCCu:9x/geoanohh0E1rzFhIZnU0Bszu

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d58b4f73e3e8a0abd7199758863f10d4

Files

d58b4f73e3e8a0abd7199758863f10d4
.exe windows:5 windows x86 arch:x86

0250125b90bd75667ee891d66861324d

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

BeginPaint
ChangeMenuW
CheckDlgButton
CheckMenuItem
CheckRadioButton
CreateWindowExW
DefWindowProcW
DialogBoxParamW
DispatchMessageW
DrawIconEx
EnableWindow
EndDialog
EndPaint
FindWindowW
GetDlgItem
GetDlgItemInt
GetDlgItemTextW
GetMessageW
GetSystemMenu
GetSystemMetrics
GetWindowRect
InvalidateRect
IsDlgButtonChecked
LoadAcceleratorsW
LoadCursorW
LoadIconW
LoadStringW
MessageBoxW
MoveWindow
PostMessageW
PostQuitMessage
RegisterClassW
SendDlgItemMessageW
SendMessageW
SetDlgItemInt
SetDlgItemTextW
SetFocus
SetWindowTextW
ShowWindow
TranslateAcceleratorW
TranslateMessage
UpdateWindow

kernel32

CloseHandle
CreateEventW
CreateThread
DeleteCriticalSection
DisableThreadLibraryCalls
DuplicateHandle
EnterCriticalSection
FindResourceW
FlushInstructionCache
GetCurrentProcess
GetCurrentThread
GetCurrentThreadId
GetLastError
GetLocaleInfoW
GetLocalTime
GetModuleHandleW
GetProcessHeap
GetTickCount
GetWindowsDirectoryW
GlobalAlloc
GlobalFree
GlobalLock
GlobalSize
GlobalUnlock
HeapAlloc
HeapFree
InitializeCriticalSection
InterlockedDecrement
InterlockedIncrement
IsBadReadPtr
IsBadStringPtrW
IsBadWritePtr
LeaveCriticalSection
LoadResource
LocalAlloc
LocalFree
LockResource
lstrcmpW
lstrcpyW
lstrlenA
lstrlenW
MulDiv
MultiByteToWideChar
OutputDebugStringW
PulseEvent
ResetEvent
SetEvent
Sleep
TerminateThread
TryEnterCriticalSection
WaitForSingleObject

shell32

SHBindToParent
SHGetDesktopFolder

comctl32

CreatePropertySheetPageW
DestroyPropertySheetPage
ImageList_Add
ImageList_AddMasked
ImageList_Create
ImageList_Destroy
ImageList_Draw
ImageList_GetImageInfo
ImageList_ReplaceIcon
InitCommonControlsEx
PropertySheetW

Sections

.text
Size: 4KB - Virtual size: 796B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 482B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 66KB - Virtual size: 68KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0250125b90bd75667ee891d66861324d

Headers

DLL Characteristics

File Characteristics

Imports

user32

kernel32

shell32

comctl32

Sections

.text Size: 4KB - Virtual size: 796B

.rdata Size: 4KB - Virtual size: 482B

.data Size: 66KB - Virtual size: 68KB

.rsrc Size: 12KB - Virtual size: 12KB

.text
Size: 4KB - Virtual size: 796B

.rdata
Size: 4KB - Virtual size: 482B

.data
Size: 66KB - Virtual size: 68KB

.rsrc
Size: 12KB - Virtual size: 12KB