d0a923cd8add6d48ab8f5081f9ac7530N[.]exe

Sharing

Copy URL

Twitter E-mail

General

Target

d0a923cd8add6d48ab8f5081f9ac7530N.exe
Size

97KB
MD5

d0a923cd8add6d48ab8f5081f9ac7530
SHA1

3664c407f1ea238e029f949166e36a04b0ea029a
SHA256

ff0d13691dacd14f1719bdf18b658d6ecdd509bbcfd4377f620295722b3aa723
SHA512

82baa10582e2da348efb897d78c3d8974ea6831b226843eafd6e17b776d6dfc6d638054c146f4424cf8a034032c5c83bbe25854b0f0baf3bb21213ffca6dca62
SSDEEP

3072:lGknqnVAS1dBYY2g/fWVEq4r6nsdeCCE7F:48qnqExFdelEZ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d0a923cd8add6d48ab8f5081f9ac7530N.exe

Files

d0a923cd8add6d48ab8f5081f9ac7530N.exe
.exe windows:4 windows x86 arch:x86

9f83b6e4ec5607ae97f6fa2ecbba1570

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

advapi32

RegCreateKeyA
RegOpenKeyExW
RegOpenKeyW
RegQueryValueExW
RegSetValueExW
RegSetValueW

kernel32

CreateFileMappingW
ExitProcess
ReadFile
SetUnhandledExceptionFilter

msvcrt

__getmainargs
__p__environ
__p__fmode
__set_app_type
_cexit
_iob
_onexit
_setmode
abort
atexit
memcpy
memset
signal
strcpy
wcscpy

user32

AppendMenuW
BeginPaint
CallWindowProcW
DefFrameProcW
DeferWindowPos
DestroyAcceleratorTable
DestroyMenu
DestroyWindow
DispatchMessageW
DrawFrameControl
GetFocus
GetMenuState
GetMenuStringW
GetMessageW
GetScrollInfo
GetSysColor
GetSystemMenu
GetSystemMetrics
GetUpdateRect
GetUpdateRgn
GetWindowTextLengthW
InsertMenuW
IsDialogMessageW
IsWindowVisible
LoadAcceleratorsW
LoadCursorW
MessageBeep
PostThreadMessageW
PtInRect
RedrawWindow
RegisterClassW
ReleaseCapture
RemoveMenu
SetCursorPos
SetMenu
SetMenuItemInfoW
SetParent
SetScrollInfo
ShowWindow
UnionRect
UnregisterClassW
VkKeyScanW
WaitForInputIdle

Sections

.text
Size: 15KB - Virtual size: 14KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 140B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 1024B - Virtual size: 544B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 720KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 17KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9f83b6e4ec5607ae97f6fa2ecbba1570

Headers

File Characteristics

Imports

advapi32

kernel32

msvcrt

user32

Sections

.text Size: 15KB - Virtual size: 14KB

.data Size: 512B - Virtual size: 140B

.idata Size: 2KB - Virtual size: 2KB

.rdata Size: 1024B - Virtual size: 544B

.bss Size: - Virtual size: 720KB

.rsrc Size: 17KB - Virtual size: 16KB

.text
Size: 15KB - Virtual size: 14KB

.data
Size: 512B - Virtual size: 140B

.idata
Size: 2KB - Virtual size: 2KB

.rdata
Size: 1024B - Virtual size: 544B

.bss
Size: - Virtual size: 720KB

.rsrc
Size: 17KB - Virtual size: 16KB