66164496853377d811547bd695969490a51c255e79ec70d2553b36e5fd664038

General

Target

66164496853377d811547bd695969490a51c255e79ec70d2553b36e5fd664038
Size

270KB
MD5

e6098ded8ed9818dd2122e3ca9cf0dc5
SHA1

5b949975c0407139329125daf792411da42970ad
SHA256

66164496853377d811547bd695969490a51c255e79ec70d2553b36e5fd664038
SHA512

2f70ef34c5e169748f165a2c6ed076919d89339e8f082166293ef1284802786d702e6d239bddf52048bcbe4b74eca279535dbcc3d08f983941eb0ad7f58d9ef0
SSDEEP

6144:o0DHT5RJCxxwLRh/ZV+XR8pzwk6QDM7kWNT59zmY8CQ0t:LzFCnoRhxUXRywk6ZtT59yByt

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
66164496853377d811547bd695969490a51c255e79ec70d2553b36e5fd664038

Files

66164496853377d811547bd695969490a51c255e79ec70d2553b36e5fd664038
.exe windows:4 windows x86 arch:x86

009ebe1199303a5e8aad14d4a62bfd83

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

BackupWrite
CloseProfileUserMapping
CreateNamedPipeA
DeleteFiber
ExitProcess
GetConsoleOutputCP
GetEnvironmentStringsA
GetFileType
GetHandleInformation
GetModuleFileNameA
GetPrivateProfileStructA
GetQueuedCompletionStatus
GetStringTypeExW
LCMapStringW
MapViewOfFile
OutputDebugStringW
Process32First
QueryPerformanceCounter
ReadConsoleOutputCharacterA
RtlUnwind
SearchPathA
SetCommBreak
SetConsoleCP
SetConsoleCtrlHandler
SetSystemTimeAdjustment
VerLanguageNameW
WriteProfileSectionA
lstrcat
lstrcatA
lstrcpynA

user32

DdeConnect
DefFrameProcW
DrawCaptionTempA
DrawEdge
DrawTextExA
GetClipCursor
GetClipboardSequenceNumber
GetGUIThreadInfo
GetMenu
GetMenuContextHelpId
GetMessagePos
GetOpenClipboardWindow
GetParent
GrayStringW
IMPSetIMEA
IsWindow
MenuItemFromPoint
SetMenuContextHelpId
SetMenuItemInfoW
UnpackDDElParam
ValidateRgn

gdi32

CreateBitmapIndirect
CreateColorSpaceA
CreateFontIndirectW
CreatePalette
DeleteObject
Ellipse
ExtEscape
FrameRgn
GetArcDirection
GetMetaFileA
GetMetaFileBitsEx
GetMetaRgn
LineDDA
PlayEnhMetaFileRecord
ResizePalette
SelectClipRgn
SetArcDirection
SetFontEnumeration
SetSystemPaletteUse
StartDocA

Sections

.text
Size: 512B - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 266KB - Virtual size: 288KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 484KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

009ebe1199303a5e8aad14d4a62bfd83

Headers

File Characteristics

Imports

kernel32

user32

gdi32

Sections

.text Size: 512B - Virtual size: 12KB

.data Size: 266KB - Virtual size: 288KB

.idata Size: - Virtual size: 16KB

.rsrc Size: 2KB - Virtual size: 484KB

.text
Size: 512B - Virtual size: 12KB

.data
Size: 266KB - Virtual size: 288KB

.idata
Size: - Virtual size: 16KB

.rsrc
Size: 2KB - Virtual size: 484KB