ce90c7aaec5a2089e73a95894071ab40N

General

Target

ce90c7aaec5a2089e73a95894071ab40N
Size

56KB
MD5

ce90c7aaec5a2089e73a95894071ab40
SHA1

fca9cb16d626b92451c21b6ef59c2da610ad9f03
SHA256

d17b0dc338ec131ede3f6297af5ecb858204035bcb86c925c555db2e6afa333d
SHA512

c48c7a86efd090303a4385887df9c953d4ad7e038266696e9d1cf373dc417a9a99d77db4d66f382e31b3c58eb9aea8215c96716807afcc02f0c73f41d456abe6
SSDEEP

768:W6F8kl1eoqmQhyjbVLE9C6KJlQ7YtmHNDw0gVIelzVCXmvypN:r861mmT/6KJlQSIN8sIzVCXmvypN

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ce90c7aaec5a2089e73a95894071ab40N

Files

ce90c7aaec5a2089e73a95894071ab40N
.exe windows:4 windows x86 arch:x86

1779e2ad8c690d436095d7f155485cf4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateProcessW
WaitForSingleObject
WideCharToMultiByte
GetUserDefaultLangID
SetLastError
GetProcAddress
FindResourceExW
GetModuleHandleW
CloseHandle
GetFileAttributesExW
FreeResource
SetEvent
ResetEvent
Sleep
GetSystemTime
TerminateThread
CancelWaitableTimer
GlobalDeleteAtom
FindNextChangeNotification
FindClose
LoadLibraryA
lstrcpyW
ResumeThread
LoadLibraryW
GlobalAlloc
ReadFile
GetFileSize
GetTickCount

user32

DialogBoxParamW
GetKeyState
DestroyIcon
LoadIconW
GetMessageW
IsDlgButtonChecked
SetDlgItemTextW
MessageBoxW
ReleaseDC
VkKeyScanW
DispatchMessageW
GetClassNameW
ReleaseCapture
SetCursor
SetWindowTextW
RegisterWindowMessageW
LoadCursorW
SetLayeredWindowAttributes
SystemParametersInfoW

gdi32

GetMapMode
MoveToEx
SetMapMode
DeleteDC
CreateCompatibleBitmap
SetBkMode
CreateFontIndirectW
CreateRoundRectRgn
GetObjectW
CreateICW

advapi32

SetSecurityDescriptorDacl
LookupAccountSidW
RegQueryValueExW
RegSetValueExW

Sections

.text
Size: 44KB - Virtual size: 41KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 1024B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

1779e2ad8c690d436095d7f155485cf4

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

Sections

.text Size: 44KB - Virtual size: 41KB

.rdata Size: 4KB - Virtual size: 1KB

.data Size: 4KB - Virtual size: 1024B

.text
Size: 44KB - Virtual size: 41KB

.rdata
Size: 4KB - Virtual size: 1KB

.data
Size: 4KB - Virtual size: 1024B