280f8e7324f4bfada2bb9ec6cc4c6bfae6c5900c38d4a88c7e1920be2f83a9d2

General

Target

280f8e7324f4bfada2bb9ec6cc4c6bfae6c5900c38d4a88c7e1920be2f83a9d2
Size

4.6MB
MD5

f28d6a246b95088cad245efc7e1c5902
SHA1

8e31b890b7da078e27cc2c10ad8dcdaf7fda3068
SHA256

280f8e7324f4bfada2bb9ec6cc4c6bfae6c5900c38d4a88c7e1920be2f83a9d2
SHA512

dd5d0d5f9ae5120b6744daef2b42e34cb2cbf650f1059975242f414cdb7003aea756fb27f9c3ef12c4f6a42656510bf634bdd6c921467e93df52adb6f26cdf26
SSDEEP

98304:prRAs5IVGqJb/Sf8pjFPOQCZl5VnzFRcvAFYg+:prRDq5Sf8pjFPOQCZl5VnzFRcoqg+

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
280f8e7324f4bfada2bb9ec6cc4c6bfae6c5900c38d4a88c7e1920be2f83a9d2

Files

280f8e7324f4bfada2bb9ec6cc4c6bfae6c5900c38d4a88c7e1920be2f83a9d2
.exe windows:6 windows x86 arch:x86

4ce1c0490daac378ae41a761fc42d97b

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

InitCommonControlsEx

setupapi

SetupDiEnumDeviceInterfaces
SetupDiDestroyDeviceInfoList
SetupDiGetClassDevsW
SetupDiGetDeviceInterfaceDetailW

hid

HidD_GetHidGuid
HidD_GetAttributes

kernel32

CreateThread
ExitProcess
GetModuleHandleW
LoadResource
FindResourceW
ReadFile
HeapFree
WriteFile
CreateFileW
GetLastError
CloseHandle
HeapAlloc
GetFileSize
lstrcpyW
GetTickCount
SizeofResource
HeapCreate
GetCommandLineW
lstrlenW
CreateMutexW
WaitForSingleObject
ReleaseMutex
Sleep
LockResource

user32

DialogBoxParamW
GetDlgItem
wsprintfW
LoadImageW
SetDlgItemTextW
LoadStringW
SetWindowTextW
GetSystemMetrics
EndDialog
SendMessageW
MessageBoxW
SendDlgItemMessageW

Sections

.text
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4.6MB - Virtual size: 4.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 492B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4ce1c0490daac378ae41a761fc42d97b

Headers

DLL Characteristics

File Characteristics

Imports

comctl32

setupapi

hid

kernel32

user32

Sections

.text Size: 8KB - Virtual size: 7KB

.rdata Size: 3KB - Virtual size: 3KB

.data Size: 512B - Virtual size: 5KB

.rsrc Size: 4.6MB - Virtual size: 4.6MB

.reloc Size: 512B - Virtual size: 492B

.text
Size: 8KB - Virtual size: 7KB

.rdata
Size: 3KB - Virtual size: 3KB

.data
Size: 512B - Virtual size: 5KB

.rsrc
Size: 4.6MB - Virtual size: 4.6MB

.reloc
Size: 512B - Virtual size: 492B