df3a11f9cc1ac18654cdd30c845558d9

Sharing

Copy URL Twitter E-mail

General

Target

df3a11f9cc1ac18654cdd30c845558d9
Size

108KB
MD5

df3a11f9cc1ac18654cdd30c845558d9
SHA1

3c3a47e0f68706e21136f63af91ab59196689275
SHA256

495a1cf5d040c203932e0d68dae053cf98000cc6cc348b29808ac7df93ea4af3
SHA512

e6a7522a96e38bed8e5444f1d38778e488cb673a7a9d603dee34122d86e49e11c4797c1380e1e31e25da9693d54bacf7574e9b103fa997b3754a0bbd91084c8f
SSDEEP

1536:AdKWk2RKCqDyi0xY5eTmvw0j0Y6+8rCfe+p8qEEkq804:AAwzi0GZvw9Y6prae+p8XHP

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
df3a11f9cc1ac18654cdd30c845558d9

Files

df3a11f9cc1ac18654cdd30c845558d9
.exe windows:4 windows x86 arch:x86

d5ea15b5851add8df9dee74197eadf9e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

version

GetFileVersionInfoSizeA

kernel32

VirtualQuery
GetStdHandle
FindFirstFileA
FindClose
GetSystemDefaultLangID
ExitThread
GetDiskFreeSpaceA
VirtualAllocEx
Sleep
GlobalAlloc
MoveFileExA
SetThreadLocale
VirtualFree
GetModuleHandleA
GetProcAddress

gdi32

SaveDC
CopyEnhMetaFileA
CreatePalette
GetDIBColorTable
GetPixel
BitBlt
GetClipBox
CreateBrushIndirect
SetPixel

user32

SetClipboardData
EnumWindows
GetSubMenu
PeekMessageA
IsRectEmpty
CheckMenuItem
TranslateMDISysAccel
DrawEdge
GetWindowLongW
DefMDIChildProcA
GetClassNameA
IsDialogMessageA
RegisterClipboardFormatA
ScreenToClient
ChildWindowFromPoint
InsertMenuA
FrameRect
IsWindow
GetMenuItemID
wsprintfA
MsgWaitForMultipleObjects
IsWindowVisible
GetWindowTextA
GetKeyboardLayoutList
IsWindowEnabled
EnableScrollBar
WaitMessage
GetSystemMenu
FindWindowA
CreateWindowExA
OpenClipboard
LoadStringA
MessageBeep
GetFocus
GetKeyboardLayout
GetCapture
ScrollWindow
DrawMenuBar
LoadCursorA
SetScrollRange
RegisterWindowMessageA
GetDlgItem
GetMenuItemCount
UnhookWindowsHookEx
GetSystemMetrics
DispatchMessageW
IntersectRect
FillRect
SetWindowsHookExA
DestroyMenu
CreatePopupMenu
CallNextHookEx
InsertMenuItemA
PostQuitMessage
CharNextA
SendMessageW
ShowOwnedPopups
PostMessageA
MapVirtualKeyA
ActivateKeyboardLayout
DefWindowProcA
CloseClipboard
GetScrollInfo
DrawIcon
DefFrameProcA
GetWindowRect
WindowFromPoint
RegisterClassA
GetIconInfo
RedrawWindow
TranslateMessage
MessageBoxA
AdjustWindowRectEx
GetMenuItemInfoA
GetDCEx
SetMenu
GetWindow
ShowWindow
GetSysColorBrush
GetCursor
EnumThreadWindows
DrawFrameControl
EndPaint
OemToCharA
SetClassLongA
GetPropA
DispatchMessageA
GetActiveWindow
GetClipboardData
SetCursor
EnumChildWindows
SetPropA
SetForegroundWindow
GetWindowPlacement
DrawAnimatedRects

shell32

SHGetDesktopFolder
SHFileOperationA
SHGetFileInfoA

Sections

CODE
Size: 29KB - Virtual size: 29KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.tls
Size: 72KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

d5ea15b5851add8df9dee74197eadf9e

Headers

File Characteristics

Imports

version

kernel32

gdi32

user32

shell32

Sections

CODE Size: 29KB - Virtual size: 29KB

.tls Size: 72KB - Virtual size: 72KB

.data Size: 3KB - Virtual size: 2KB

.edata Size: 2KB - Virtual size: 1KB

CODE
Size: 29KB - Virtual size: 29KB

.tls
Size: 72KB - Virtual size: 72KB

.data
Size: 3KB - Virtual size: 2KB

.edata
Size: 2KB - Virtual size: 1KB