1420108923a70ae698b4a27bc36b7aa0N[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

1420108923a70ae698b4a27bc36b7aa0N.exe
Size

2.3MB
MD5

1420108923a70ae698b4a27bc36b7aa0
SHA1

84f70026a543017c2e65a846d7a042087206e709
SHA256

723505d74368832ad76f402771c209c0f784de1be3869288c3a1f8158e52c735
SHA512

4162c48336960f2e69eac22a47e70e2013704842797ed8e01cd30f75cc3d12d5dc12d155c66dd3bc582839fdfb146467c7b70d7246cab10e80fa15b98ec87b88
SSDEEP

49152:9IaHOf09g+IoDvl+U76w6Lgf1/mlWw48:jHOfUHB76Tgf8lWe

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1420108923a70ae698b4a27bc36b7aa0N.exe

Files

1420108923a70ae698b4a27bc36b7aa0N.exe
.dll windows:5 windows x86 arch:x86

0ca6db6eb1a1c98708b28e25cf3f7160

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

ws2_32

WSAGetLastError

advapi32

AddAccessDeniedAceEx
RegDeleteKeyA

ole32

RegisterDragDrop
OleCreateMenuDescriptor

user32

ChildWindowFromPoint
CheckDlgButton
SetActiveWindow
TileWindows
GetMessageA
CreateIconFromResourceEx
EnumClipboardFormats

kernel32

GetModuleFileNameA
GetBinaryTypeW
GetModuleFileNameW
ChangeTimerQueueTimer
OutputDebugStringA
MultiByteToWideChar

Sections

.text
Size: 124KB - Virtual size: 120KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.code
Size: 392KB - Virtual size: 394KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

u3r7wO
Size: 900KB - Virtual size: 898KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

WpL6U
Size: 108KB - Virtual size: 105KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

xK
Size: 520KB - Virtual size: 519KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.crt1
Size: 104KB - Virtual size: 100KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

8+
Size: 56KB - Virtual size: 53KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 40KB - Virtual size: 38KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

DATA
Size: 80KB - Virtual size: 78KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0ca6db6eb1a1c98708b28e25cf3f7160

Headers

File Characteristics

Imports

ws2_32

advapi32

ole32

user32

kernel32

Sections

.text Size: 124KB - Virtual size: 120KB

.rdata Size: 4KB - Virtual size: 2KB

.code Size: 392KB - Virtual size: 394KB

u3r7wO Size: 900KB - Virtual size: 898KB

WpL6U Size: 108KB - Virtual size: 105KB

xK Size: 520KB - Virtual size: 519KB

.crt1 Size: 104KB - Virtual size: 100KB

8+ Size: 56KB - Virtual size: 53KB

.rsrc Size: 40KB - Virtual size: 38KB

DATA Size: 80KB - Virtual size: 78KB

.text
Size: 124KB - Virtual size: 120KB

.rdata
Size: 4KB - Virtual size: 2KB

.code
Size: 392KB - Virtual size: 394KB

u3r7wO
Size: 900KB - Virtual size: 898KB

WpL6U
Size: 108KB - Virtual size: 105KB

xK
Size: 520KB - Virtual size: 519KB

.crt1
Size: 104KB - Virtual size: 100KB

8+
Size: 56KB - Virtual size: 53KB

.rsrc
Size: 40KB - Virtual size: 38KB

DATA
Size: 80KB - Virtual size: 78KB