d236daa805879dc08b3eaf2df59d8830N

Sharing

Copy URL Twitter E-mail

General

Target

d236daa805879dc08b3eaf2df59d8830N
Size

221KB
MD5

d236daa805879dc08b3eaf2df59d8830
SHA1

709044520687ec09a595dda7a121d3e54d71abd2
SHA256

98e91937980d47f715c6616a12048fe52b4cd26eb00b51189fdad738fce0d58e
SHA512

b47cbee1136be056bb25462cc949b5c641409c14adff6c81953d1b8c7d302baff15ca2ad6476305fd4847bdfa270653fee92e4d2ef7366fa899dfd6fc3491178
SSDEEP

6144:Pq0hPGpsURcXE6Ubyhno9NjJC05m4knWoz57ACIMb:PbWcE6Uw8Nj0um4SF1

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d236daa805879dc08b3eaf2df59d8830N

Files

d236daa805879dc08b3eaf2df59d8830N
.dll windows:5 windows x86 arch:x86

3be284db348c1bc0687dc8dfcd450813

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

G:\ibiraaN\NbCchxvn\ojNaQsqU\clqOkldu.pdb

Imports

comdlg32

GetSaveFileNameA
FindTextW
ChooseFontW

comctl32

ImageList_Draw
ImageList_Read
InitCommonControlsEx
ImageList_GetIconSize

user32

CharToOemW
GetKeyboardLayoutNameW
CharToOemBuffA
FillRect
wvsprintfA
PostMessageA
UpdateWindow
OpenIcon
LoadAcceleratorsA
keybd_event
GetMenuStringA
EnableMenuItem
IsCharLowerA
RegisterClassExW

gdi32

SaveDC
OffsetViewportOrgEx
CreateDIBSection
WidenPath
RealizePalette

kernel32

RegisterWaitForSingleObject
GetCommandLineW
GetPriorityClass
HeapReAlloc
SetNamedPipeHandleState
lstrcpynW
GetNumberFormatA

shlwapi

PathFindFileNameW

Exports

Exports

?HIKUAJnz@@YGXPAG@Z
?aki_chkgos@@YGPAXPAII@Z
?uvGV_wrQjxBKPMHg@@YGPAXD@Z
?_FULZV_Sl_mLO_A_HRBNHB@@YGJJPAE@Z
?O____UJFDMHXd@@YGDM@Z

Sections

.text
Size: 103KB - Virtual size: 102KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

DATA1
Size: 33KB - Virtual size: 33KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

DATA2
Size: 67KB - Virtual size: 230KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3be284db348c1bc0687dc8dfcd450813

Headers

File Characteristics

PDB Paths

Imports

comdlg32

comctl32

user32

gdi32

kernel32

shlwapi

Exports

Exports

Sections

.text Size: 103KB - Virtual size: 102KB

.rdata Size: 11KB - Virtual size: 11KB

.data Size: 3KB - Virtual size: 2KB

DATA1 Size: 33KB - Virtual size: 33KB

DATA2 Size: 67KB - Virtual size: 230KB

.rsrc Size: 512B - Virtual size: 16B

.reloc Size: 1KB - Virtual size: 1KB

.text
Size: 103KB - Virtual size: 102KB

.rdata
Size: 11KB - Virtual size: 11KB

.data
Size: 3KB - Virtual size: 2KB

DATA1
Size: 33KB - Virtual size: 33KB

DATA2
Size: 67KB - Virtual size: 230KB

.rsrc
Size: 512B - Virtual size: 16B

.reloc
Size: 1KB - Virtual size: 1KB