e23076dd47efc4bd1759ca799a33aefa

General

Target

e23076dd47efc4bd1759ca799a33aefa
Size

90KB
MD5

e23076dd47efc4bd1759ca799a33aefa
SHA1

5adea3d4d34f2dd424e5c7646c51ca53c4b0945c
SHA256

b9c01b3f34ba8bf754ec35a34fc0993792b144e950c501f2449576495b82b15a
SHA512

7d5bf0bd53fd6f1b3fff46b6fc85506074d49c26b51cdc6a621b3dfcba5e4bbfadbb11749a00b1686f9c9530bdeb19e3646ca72e2df14f56bb420e391486d344
SSDEEP

1536:YR04m40r90KSLmpuXBf2ue0M0wHE8Do184sAAp6hp2H5BGofJdgnttRD2jy:YRvX0yKr+B+z0EsdApum4t+y

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
e23076dd47efc4bd1759ca799a33aefa

Files

e23076dd47efc4bd1759ca799a33aefa
.dll windows:4 windows x86 arch:x86

9cb3d8caaf62f73a5d266bbbd36c26d7

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CloseHandle
CreateFileA
DeleteCriticalSection
DeleteFileA
EnterCriticalSection
GetFileSize
GetFileType
GetProcAddress
InitializeCriticalSection
LeaveCriticalSection
LoadLibraryA
LocalFree
OpenMutexA
OpenProcess
ReadFile
ResumeThread
Sleep
TerminateThread
VirtualAlloc
VirtualFree
VirtualProtect
WaitForSingleObject
WinExec

user32

BeginPaint
ExitWindowsEx
FindWindowExA
GetCapture
GetCursorPos
GetDC
GetDesktopWindow
GetSystemMetrics
GetWindow
GetWindowDC
GetWindowTextA
GetWindowTextLengthA

gdi32

CombineRgn
CreateBrushIndirect
CreateCompatibleBitmap
CreateCompatibleDC
CreateDIBSection
CreateRectRgn
CreateSolidBrush
DeleteDC
DeleteObject
GetDeviceCaps
GetPixel
GetStockObject
MoveToEx
Rectangle
RestoreDC
SaveDC
SelectObject
SetPixel
TextOutA

shell32

DragAcceptFiles
DragFinish
DragQueryFile

Sections

.text
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.code
Size: 10KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 10KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

CRT
Size: 11KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 40KB - Virtual size: 100KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

9cb3d8caaf62f73a5d266bbbd36c26d7

Headers

File Characteristics

Imports

kernel32

user32

gdi32

shell32

Sections

.text Size: 8KB - Virtual size: 8KB

DATA Size: 2KB - Virtual size: 4KB

.code Size: 10KB - Virtual size: 12KB

.idata Size: 10KB - Virtual size: 12KB

CRT Size: 11KB - Virtual size: 12KB

.data Size: 40KB - Virtual size: 100KB

.text
Size: 8KB - Virtual size: 8KB

DATA
Size: 2KB - Virtual size: 4KB

.code
Size: 10KB - Virtual size: 12KB

.idata
Size: 10KB - Virtual size: 12KB

CRT
Size: 11KB - Virtual size: 12KB

.data
Size: 40KB - Virtual size: 100KB