fd0023ce3c1795c98077a5ee32c43440N

Sharing

Copy URL Twitter E-mail

General

Target

fd0023ce3c1795c98077a5ee32c43440N
Size

234KB
MD5

fd0023ce3c1795c98077a5ee32c43440
SHA1

cff9030c3f05962adcdd41f94be06e41df49eecf
SHA256

53ccab70007dd33402bf97b4750a9a7dc3f9f6824aa10c9fab17e4a4888ccaf6
SHA512

1b87e3cee0e96e0a6669a829e53aad6fc2c191bad4dc8de5cb3c5c818cf732d1ad8065d4f863ca107c2b51c05904d72739ce23613dbac0ea3e01ee61cdd20098
SSDEEP

3072:b5HAfJ4LxpHN8HdLj/a4SxH4tfcvmZXZ9mXijouKc0wtmPNKNK2OEebk2fs:b5HAfiDq9PDdc+9mXihKc0Wm1fZ9Y

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fd0023ce3c1795c98077a5ee32c43440N

Files

fd0023ce3c1795c98077a5ee32c43440N
.exe windows:5 windows x86 arch:x86

9aa3413b9ec93ddb73e8ebb10ba6387a

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

GetBkColor
GetDCBrushColor
GetDCPenColor
GetClipRgn
GetMetaRgn
GetCurrentObject
GetDeviceCaps
GetGraphicsMode
GetMapMode
GetNearestColor
GetNearestPaletteIndex
GetObjectType
GetPixelFormat
GetPolyFillMode
GetRandomRgn
GetSystemPaletteUse
GetTextCharacterExtra
GetTextAlign
GetTextColor
GetTextCharset
GetTextCharsetInfo
GetFontLanguageInfo
GetFontUnicodeRanges
SetPixel
SetTextCharacterExtra
SetTextColor
SetTextJustification
UpdateColors

user32

GetWindowContextHelpId
GetMenuContextHelpId
GetCursor
GetWindowLongA
LoadIconA
SetWindowTextA
RemovePropA
GetPropA
GetScrollPos
EndPaint
BeginPaint
GetWindowDC
GetDC
WindowFromDC
GetForegroundWindow
DrawTextA
GetMenuItemCount
GetMenuItemID
GetMenuState
GetMenu
IsWindowEnabled
EnableWindow
IsWindowUnicode
GetQueueStatus
GetInputState
SetFocus
CheckDlgButton
SetDlgItemTextA
GetDlgItemInt
GetDlgItem
EndDialog
MoveWindow
ShowWindow
CallWindowProcA
SendMessageA
GetMenuCheckMarkDimensions

kernel32

MoveFileA
FindResourceA
LocalFlags
GlobalHandle
GlobalFlags
GlobalSize
GlobalAlloc
LockResource
LoadResource
GetProcAddress
GetModuleHandleA
GetTickCount
GetVersion
IsProcessorFeaturePresent
GetCurrentThreadId
GetCurrentProcessId
GetCurrentProcess
GetProcessHeap
HeapAlloc
QueryPerformanceCounter
GetLastError
CloseHandle
IsDebuggerPresent
WriteFile
SetFilePointer
GetFileType
GetFileTime
FlushFileBuffers
DeleteFileA
GetStdHandle

Sections

.text
Size: 184KB - Virtual size: 184KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 18KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 57KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 29KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9aa3413b9ec93ddb73e8ebb10ba6387a

Headers

DLL Characteristics

File Characteristics

Imports

gdi32

user32

kernel32

Sections

.text Size: 184KB - Virtual size: 184KB

.rdata Size: 18KB - Virtual size: 18KB

.data Size: 512B - Virtual size: 57KB

.reloc Size: 29KB - Virtual size: 29KB

.text
Size: 184KB - Virtual size: 184KB

.rdata
Size: 18KB - Virtual size: 18KB

.data
Size: 512B - Virtual size: 57KB

.reloc
Size: 29KB - Virtual size: 29KB