a318fbaddaa11df5edde620b4c45ff31316dcfadf085d0f862004c857be568d7

Sharing

Copy URL Twitter E-mail

General

Target

a318fbaddaa11df5edde620b4c45ff31316dcfadf085d0f862004c857be568d7
Size

10KB
MD5

563ccff9d1021076a12176ae49404d32
SHA1

f9d5b4cd52b42858917a4e1a1a60763c039f8930
SHA256

a318fbaddaa11df5edde620b4c45ff31316dcfadf085d0f862004c857be568d7
SHA512

a40df6f0c5fa996d885cdd286077395a2719be90bd22afc39043d5148b4a9156c316299d51a81fdf7f814fb4fdd498eddee32dd96086c90197cda7348104b670
SSDEEP

96:Z15aHOL27kMU14omQa3INMHW7wB62E/kq81zAL97VO0RIt59JgkvUaEJmad:daHfVR3Ie9BXyYsLhVFC3wmad

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a318fbaddaa11df5edde620b4c45ff31316dcfadf085d0f862004c857be568d7

Files

a318fbaddaa11df5edde620b4c45ff31316dcfadf085d0f862004c857be568d7
.dll windows:1 windows x64 arch:x64

85c009576b13c4e0c54509102a247d33

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

Imports

kernel32

SetFileAttributesW
SetThreadExecutionState
CommConfigDialogA
GlobalGetAtomNameA
GetProfileStringA
UnhandledExceptionFilter
ReadConsoleOutputCharacterA
GetMailslotInfo
CloseHandle
GetEnvironmentStringsA
Beep
ConnectNamedPipe
GetPrivateProfileStringA
OpenEventA
ReadConsoleOutputA
SetEnvironmentVariableA
ExpungeConsoleCommandHistoryA
EnumCalendarInfoExW
HeapAlloc
ExitVDM
SetVolumeLabelA
SetupComm
OpenMutexA
SetConsoleMaximumWindowSize
Module32First
ResumeThread
GetStringTypeA
GetDefaultCommConfigA

msi

MsiGetProductCodeFromPackageCodeW
MsiReinstallFeatureW
MsiGetFileHashW
MsiRecordGetInteger
MsiRemovePatchesW
MsiDeterminePatchSequenceA
MsiEnumComponentsA
MsiProvideComponentFromDescriptorW

user32

CopyAcceleratorTableW
UserHandleGrantAccess
MessageBoxTimeoutW
SetTimer
GetWindowTextW
PostQuitMessage
ClientToScreen
IsCharAlphaNumericW
SetMenuContextHelpId
RemovePropA
SetCaretPos
SetMenuItemInfoW
IsWindowEnabled
IsWindowUnicode
GetKeyboardLayoutNameW
DdePostAdvise
SystemParametersInfoA
SetDeskWallpaper
GetWindowRgn
GetDesktopWindow
GetWindowInfo
MapWindowPoints
GetDialogBaseUnits

Exports

Exports

CPlApplet

Sections

.text
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: - Virtual size: 512B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 65B

IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 8B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

85c009576b13c4e0c54509102a247d33

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

msi

user32

Exports

Exports

Sections

.text Size: 8KB - Virtual size: 8KB

.data Size: - Virtual size: 512B

.edata Size: 512B - Virtual size: 65B

.reloc Size: 512B - Virtual size: 8B

.text
Size: 8KB - Virtual size: 8KB

.data
Size: - Virtual size: 512B

.edata
Size: 512B - Virtual size: 65B

.reloc
Size: 512B - Virtual size: 8B