d87cddae8dfafe3ffef8a63297ee38a8991f94e1307e9a70b05cceea5525ae29

General

Target

d87cddae8dfafe3ffef8a63297ee38a8991f94e1307e9a70b05cceea5525ae29
Size

574KB
MD5

70da45bde6522d0dac19d7a7084b579d
SHA1

a11eb61c4f364f8ab4267290e5be7a06a66bf518
SHA256

d87cddae8dfafe3ffef8a63297ee38a8991f94e1307e9a70b05cceea5525ae29
SHA512

4a2198906d59fe26c89de3de3dd7a44fd8a2a60562d6eb0bba87c9b28f4694d982cb3628c30343ef17e7a7315e8d591d0b3fbf350c0aae204ea76db40edbf0de
SSDEEP

6144:8lC1jV7OblX8Gj5ykwvwojn6O8d3S4EYiSzLZGO9B5WOx1e+hP5BByS6f8sKjv9:8U1jVqiGSdjn65dC/Gv95iD8sKjv9

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d87cddae8dfafe3ffef8a63297ee38a8991f94e1307e9a70b05cceea5525ae29

Files

d87cddae8dfafe3ffef8a63297ee38a8991f94e1307e9a70b05cceea5525ae29
.exe windows:4 windows x86 arch:x86

4948a577c8b6ee0914a9931af0b33a46

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GlobalAlloc
GlobalFree
PeekConsoleInputA
ReadConsoleInputA
ReadFile
GetTickCount
WriteFile
lstrcatA
lstrcpyA
lstrcpynA
GetNumberOfConsoleInputEvents
GetModuleHandleA
GetLastError
GetExitCodeThread
FormatMessageA
FindNextFileA
FindFirstFileA
FindClose
ExitThread
ExitProcess
CreateThread
Sleep
CloseHandle

user32

GetParent
GetSysColorBrush
GetSystemMetrics
GetFocus
GetWindowTextA
InvalidateRgn
IsIconic
IsWindowEnabled
IsWindowVisible
KillTimer
LoadCursorA
LoadIconA
LoadImageA
MapWindowPoints
MessageBoxA
OffsetRect
PostMessageA
ReleaseDC
SendDlgItemMessageA
SendMessageA
SetCursor
SetDlgItemTextA
SetFocus
SetForegroundWindow
SetTimer
SetWindowPos
SetWindowTextA
ShowWindow
SystemParametersInfoA
UpdateWindow
GetDlgItemTextA
GetDlgItem
GetDesktopWindow
GetDC
FillRect
EnumDesktopWindows
EndDialog
EnableWindow
EnableMenuItem
DialogBoxParamA
CopyRect
CheckMenuItem
GetWindowRect

gdi32

SetBkColor
DeleteObject
SetTextColor
CreateSolidBrush

advapi32

RegSetValueExA
RegQueryValueExA
RegOpenKeyExA
RegCloseKey
RegCreateKeyExA

comctl32

ord17

Sections

.text
Size: 56KB - Virtual size: 56KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 18KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

4948a577c8b6ee0914a9931af0b33a46

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

comctl32

Sections

.text Size: 56KB - Virtual size: 56KB

.rdata Size: 4KB - Virtual size: 4KB

.data Size: 1KB - Virtual size: 13KB

.rsrc Size: 18KB - Virtual size: 17KB

.text
Size: 56KB - Virtual size: 56KB

.rdata
Size: 4KB - Virtual size: 4KB

.data
Size: 1KB - Virtual size: 13KB

.rsrc
Size: 18KB - Virtual size: 17KB