d9c87c65fa297fa6c95fe946a43b4f90N[.]exe

General

Target

d9c87c65fa297fa6c95fe946a43b4f90N.exe
Size

349KB
MD5

d9c87c65fa297fa6c95fe946a43b4f90
SHA1

8a266d6971c1b6b085a47a97fdb7fb0a3d5938e5
SHA256

a4523dab5dd811f39f771bdb69b0aee9bc4a9a9ddf757a6aceae84ea591b349e
SHA512

f92e455d68cfa899ee087067e57e9eec5099e7553b29d83b8027c2b075aa3189e599f1aa69f9da883c835096e82ca5ef5d4787868f8dc566ac9d4b44048002fc
SSDEEP

6144:DrKweBd+KTK9HYIg7A3DZ5CdSJwaex6b4FlCwhhmwhm15DDHHyrGMmF7n74kjoU:DD48pgOPwrzlh1+kpa7p176

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d9c87c65fa297fa6c95fe946a43b4f90N.exe

Files

d9c87c65fa297fa6c95fe946a43b4f90N.exe
.exe windows:5 windows x86 arch:x86

962239a397355029cccf67e0bb00f023

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

GetDCPenColor
SetSystemPaletteUse
GetDCBrushColor
GetSystemPaletteUse
UpdateColors
GetTextCharsetInfo
GetFontUnicodeRanges
GetObjectType
SetPixel
GetGraphicsMode
GetPolyFillMode
GetNearestPaletteIndex
GetNearestColor
SetTextJustification
GetTextCharacterExtra
GetBkColor

user32

CharLowerBuffA
GetDialogBaseUnits
EndDialog
GetQueueStatus
SetDlgItemTextA
SendMessageA
GetMenuItemID
GetWindowLongA
GetDlgItem
GetPropA
PostMessageA
DrawTextA
GetWindowContextHelpId
EndPaint
IsWindowUnicode
GetMenu
BeginPaint
GetMenuState
LoadIconA
IsWindowEnabled
GetInputState
GetDlgItemInt
wvsprintfA
ShowWindow

kernel32

GetProcAddress
CreateFileA
CloseHandle
HeapFree
HeapReAlloc
WriteFile
GetSystemTime
SystemTimeToFileTime
GetFileTime
GetFileSize
GlobalHandle
GetModuleHandleA
IsProcessorFeaturePresent
LocalFlags
SetFilePointer
GetTickCount
IsDebuggerPresent
GlobalSize
GetVersion
GetCurrentProcess
FindResourceA
GlobalFlags
GetLastError
LoadResource
GetStdHandle
HeapAlloc
GetProcessHeap
ExitProcess
lstrlenA
DeleteFileA
LockResource
GetCurrentProcessId

Sections

.text
Size: 257KB - Virtual size: 257KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 39KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 49KB - Virtual size: 49KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

962239a397355029cccf67e0bb00f023

Headers

DLL Characteristics

File Characteristics

Imports

gdi32

user32

kernel32

Sections

.text Size: 257KB - Virtual size: 257KB

.rdata Size: 39KB - Virtual size: 39KB

.data Size: 1KB - Virtual size: 3KB

.reloc Size: 49KB - Virtual size: 49KB

.text
Size: 257KB - Virtual size: 257KB

.rdata
Size: 39KB - Virtual size: 39KB

.data
Size: 1KB - Virtual size: 3KB

.reloc
Size: 49KB - Virtual size: 49KB