a05889eddcb2ad7e9912fa536187594f3fc0c4efa658697c18c7de0ef7ef888d

General

Target

a05889eddcb2ad7e9912fa536187594f3fc0c4efa658697c18c7de0ef7ef888d
Size

65KB
MD5

bd15c6be50761af6c241c0ddba300f78
SHA1

edcbbdc2e8d08e70ae4da6946e75b1db14fdfd47
SHA256

a05889eddcb2ad7e9912fa536187594f3fc0c4efa658697c18c7de0ef7ef888d
SHA512

5635e4f9059d30904acc109964fbd7d58cf3db088118c478bbd73d309b7cdb66c6f427a99d37b3df9bab0d0ba2c06bb339c700328e79680e4506bdef00ba5987
SSDEEP

1536:70ZkQJH3OezE1SzdR4CyRePHlIb0w6CJsu968vYA100yUIss:76dJ+YWk00EslmpyUO

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a05889eddcb2ad7e9912fa536187594f3fc0c4efa658697c18c7de0ef7ef888d

Files

a05889eddcb2ad7e9912fa536187594f3fc0c4efa658697c18c7de0ef7ef888d
.dll windows:1 windows x86 arch:x86

add4a7029a90306c901bbbefde5b1cea

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_DLL

Imports

gdi32

MoveToEx

kernel32

CloseHandle
CreateFileA
DeleteFileA
ExitProcess
FindClose
FindFirstFileA
FindNextFileA
GetCommandLineA
GetFileAttributesA
GetFileSize
GetFileType
GetLastError
GetLocalTime
GetModuleHandleA
GetProcAddress
GetStartupInfoA
GetVersionExA
GetVolumeInformationA
GlobalAlloc
GlobalFree
GlobalReAlloc
LoadLibraryA
MultiByteToWideChar
ReadFile
SetEndOfFile
SetErrorMode
SetFilePointer
SetLastError
Sleep
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue
WideCharToMultiByte
WriteFile
FreeLibrary
RtlMoveMemory

ole32

CLSIDFromProgID
CoCreateInstance
CoInitialize
CoUninitialize
ProgIDFromCLSID

oleaut32

GetActiveObject
SafeArrayCreate
SysAllocStringByteLen
SysFreeString
SysStringByteLen
VariantClear
VariantCopy

user32

CreateDialogIndirectParamA
CreateDialogParamA
CreateWindowExA
DialogBoxIndirectParamA
DialogBoxParamA
GetWindow

Exports

Exports

CWUFUTAJNL
LEAP
SPLITDATE

Sections

.text
Size: 56KB - Virtual size: 55KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.link
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

add4a7029a90306c901bbbefde5b1cea

Headers

File Characteristics

Imports

gdi32

kernel32

ole32

oleaut32

user32

Exports

Exports

Sections

.text Size: 56KB - Virtual size: 55KB

.data Size: 4KB - Virtual size: 5KB

.link Size: 2KB - Virtual size: 1KB

.rloc Size: 1KB - Virtual size: 1KB

.text
Size: 56KB - Virtual size: 55KB

.data
Size: 4KB - Virtual size: 5KB

.link
Size: 2KB - Virtual size: 1KB

.rloc
Size: 1KB - Virtual size: 1KB