0d439a6974927af1ba4d203e3a412fcb071f5b184e5d4a84dc32abf71a2f6a36[.]exe

General

Target

0d439a6974927af1ba4d203e3a412fcb071f5b184e5d4a84dc32abf71a2f6a36.exe
Size

87KB
MD5

d652e43a2b4ad1de009916d890ded670
SHA1

387d9132130027fba78a36aeacba9aadb79e1f67
SHA256

0d439a6974927af1ba4d203e3a412fcb071f5b184e5d4a84dc32abf71a2f6a36
SHA512

293fbf42fc5b55925e4c176fc04293ba54627987a7c95995fc1f9fabe76e593f90fcf8322d11468f608d484988ba4ce2b66db3913b49830e22bb4f6f0a14736a
SSDEEP

1536:jTIIx+GJDs7lqUMhphd9EWzSW3tiJ9EBz+Wu1nnTmIQb6q/WqNO57AW59c:PIIx+G5s7lt4phjEWs9EBiWonn63bZ7p

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0d439a6974927af1ba4d203e3a412fcb071f5b184e5d4a84dc32abf71a2f6a36.exe

Files

0d439a6974927af1ba4d203e3a412fcb071f5b184e5d4a84dc32abf71a2f6a36.exe
.exe windows:1 windows x86 arch:x86

b4ba9a63d7b5e3aee7defc9b3eb88f94

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

CallWindowProcW
ChangeDisplaySettingsExA
CreatePopupMenu
CreateWindowExW
CreateWindowStationA
CreateWindowStationW
DdeAbandonTransaction
DdeAccessData
DdeAddData
DdeClientTransaction
DdeCmpStringHandles
DdeConnect
DdeConnectList
DdeCreateDataHandle
DrawTextExA
EmptyClipboard
GetClipboardData
GetMenu
InsertMenuA
RegisterClipboardFormatA
SetClassLongA
SetClipboardData
SetCursor
ShowCursor

kernel32

ExitProcess
GetLastError
GetModuleHandleA
GetProcAddress
GetTickCount
LoadLibraryA
MapViewOfFile
OpenJobObjectW
OpenMutexA
OpenMutexW
OpenProcess
OutputDebugStringA
OutputDebugStringW
QueryDosDeviceA
SetThreadPriorityBoost
SetTimeZoneInformation
SetUnhandledExceptionFilter
SetVDMCurrentDirectories
SetVolumeLabelA
SetVolumeLabelW
SetWaitableTimer
SetupComm
ShowConsoleCursor
SignalObjectAndWait
UnmapViewOfFile
VirtualAlloc
VirtualFree

advapi32

LsaOpenSecret
LsaOpenTrustedDomain
LsaQueryDomainInformationPolicy
LsaQueryInfoTrustedDomain
RegOpenKeyW
RegOpenKeyExA
RegOpenKeyExW
RegOverridePredefKey
RegQueryInfoKeyA
RegQueryInfoKeyW
RegisterServiceCtrlHandlerW
ReportEventA
ReportEventW

Sections

.rsrc
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.text
Size: 80KB - Virtual size: 80KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

b4ba9a63d7b5e3aee7defc9b3eb88f94

Headers

File Characteristics

Imports

user32

kernel32

advapi32

Sections

.rsrc Size: 6KB - Virtual size: 6KB

.text Size: 80KB - Virtual size: 80KB

.rsrc
Size: 6KB - Virtual size: 6KB

.text
Size: 80KB - Virtual size: 80KB