d590b95a3dcec6536e9fa81dd7bb0570

General

Target

d590b95a3dcec6536e9fa81dd7bb0570
Size

49KB
MD5

d590b95a3dcec6536e9fa81dd7bb0570
SHA1

b0b215eb20b932ce2b56e3d59d7d1ca8fc86cbe9
SHA256

c5c57339bd2da634f7738740c774e8feb865d56f7ee5c937275149e097d676bb
SHA512

2eeb97b68a6d07683c9523205466aa688962e5b0f725f0d6f671bdb825e0ec1c2359c38c87cb61f17402a0238ceac811a8df0bf01400431a256040d3f8dfb213
SSDEEP

1536:zkxnSWqRpJv1sr1g+1WYyAXMXO2+ekQcLj:YxSfXRa511WYzMe5

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d590b95a3dcec6536e9fa81dd7bb0570

Files

d590b95a3dcec6536e9fa81dd7bb0570
.exe windows:5 windows x86 arch:x86

b6b2eefd525feb2c64750593df24329d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetIconInfo
ToUnicode
DrawIcon
GetWindowThreadProcessId
PeekMessageA
GetDlgItemTextA
GetForegroundWindow
MsgWaitForMultipleObjects
GetKeyboardState
GetMessageA
GetClassNameW
GetKeyState
CharLowerBuffA
GetWindowLongW
GetClipboardData
OpenWindowStationA
PeekMessageW
GetDlgItemTextW
SetThreadDesktop
CloseWindowStation
CloseDesktop
GetDlgItem
DispatchMessageW
GetWindowTextW
GetMessageW
ExitWindowsEx
OpenDesktopA
GetCursorPos
FindWindowExW
EndDialog
SetProcessWindowStation
LoadCursorW
SendMessageW

kernel32

OpenMutexW
GetSystemTimeAsFileTime
GetThreadPriority
GetSystemTime
GetModuleHandleA
GetModuleFileNameA
WideCharToMultiByte
CreateThread
CloseHandle
CreateFileMappingW
GetCurrentThreadId
WriteFile
FindNextFileW
lstrcatA
OpenProcess
DeleteFileW
SetLastError
UnmapViewOfFile
GlobalUnlock
FlushFileBuffers
SetFileTime
CreateFileW
lstrcmpiA
SetEvent
GetLogicalDrives
ResetEvent
GetLastError
lstrlenA
GetExitCodeProcess
GetVersionExW
CreateMutexW
GetTempFileNameW
GetCurrentProcessId
CreateDirectoryW
MoveFileExW
CreateEventW
GetUserDefaultUILanguage
GetTickCount
GetFileTime
GetModuleFileNameW
MapViewOfFile
lstrcpyW
lstrcmpiW
GetProcessHeap
HeapAlloc
ExpandEnvironmentStringsW
lstrcatW
GetProcessTimes
SetFileAttributesW
SetThreadPriority
Sleep
FindFirstFileW
GetFileSize
EnterCriticalSection
SetEndOfFile
IsBadReadPtr
lstrcpynW

Sections

.xapkx
Size: 39KB - Virtual size: 61KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.dkf
Size: 2KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.opah
Size: 7KB - Virtual size: 80KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b6b2eefd525feb2c64750593df24329d

Headers

File Characteristics

Imports

user32

kernel32

Sections

.xapkx Size: 39KB - Virtual size: 61KB

.dkf Size: 2KB - Virtual size: 5KB

.opah Size: 7KB - Virtual size: 80KB

.xapkx
Size: 39KB - Virtual size: 61KB

.dkf
Size: 2KB - Virtual size: 5KB

.opah
Size: 7KB - Virtual size: 80KB