82a4d28ac3ed7c6f921fabfaacee03a849ef3f6d506b5799224e84166e8d4af9

General

Target

82a4d28ac3ed7c6f921fabfaacee03a849ef3f6d506b5799224e84166e8d4af9
Size

370KB
MD5

f6db195dc979805448990b44ffe52a12
SHA1

dbfa89d32d65d30a67b38153118ef09636af27d0
SHA256

82a4d28ac3ed7c6f921fabfaacee03a849ef3f6d506b5799224e84166e8d4af9
SHA512

f14b427f972f3dd263d88aca9b0501fe3c6ba098830c63fa338a7f9d7b81bb9f14ff9d23da276bbebbf9091bde1e6126648a0ba2773fb28fbd15f7dc203f524b
SSDEEP

768:W+VAk+m471cqseZ8eWkWnqqmVoqY8xRhE5Dl:FV/+mDre4nqqmVxZLh

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
82a4d28ac3ed7c6f921fabfaacee03a849ef3f6d506b5799224e84166e8d4af9

Files

82a4d28ac3ed7c6f921fabfaacee03a849ef3f6d506b5799224e84166e8d4af9
.exe windows:4 windows x86 arch:x86

73197397c871d7f99491c0ba5fd7b8a0

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

EndDialog
DialogBoxParamA
DestroyWindow
DefWindowProcA
SetFocus
PostQuitMessage
SendMessageA
BeginPaint
GetClientRect
DrawTextA
EndPaint
CreateWindowExA
ShowWindow
UpdateWindow
LoadIconA
LoadCursorA
RegisterClassExA
LoadStringA
GetMessageA
TranslateMessage
DispatchMessageA

kernel32

lstrcatA
VirtualAlloc
HeapAlloc
HeapFree
WriteFile
RtlUnwind
VirtualFree
HeapCreate
HeapDestroy
GetFileType
GetStdHandle
SetHandleCount
GetOEMCP
GetACP
GetCPInfo
WideCharToMultiByte
GetEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsW
FreeEnvironmentStringsA
GetModuleFileNameA
SetFileAttributesA
CopyFileA
RemoveDirectoryA
ReplaceFileA
CompareStringW
InitializeCriticalSection
GetCurrentProcess
LoadLibraryA
GetLastError
GetProcAddress
GetCurrentDirectoryA
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetVersion
ExitProcess
TerminateProcess
UnhandledExceptionFilter

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 19KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.shell
Size: 320KB - Virtual size: 320KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

73197397c871d7f99491c0ba5fd7b8a0

Headers

DLL Characteristics

File Characteristics

Imports

user32

kernel32

Sections

.text Size: 13KB - Virtual size: 13KB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 12KB - Virtual size: 13KB

.rsrc Size: 19KB - Virtual size: 19KB

.shell Size: 320KB - Virtual size: 320KB

.text
Size: 13KB - Virtual size: 13KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 12KB - Virtual size: 13KB

.rsrc
Size: 19KB - Virtual size: 19KB

.shell
Size: 320KB - Virtual size: 320KB