38c169280066f7a97962b590844863ccee97d3167198afa1ab4398e6011234c8N

Sharing

Copy URL Twitter E-mail

General

Target

38c169280066f7a97962b590844863ccee97d3167198afa1ab4398e6011234c8N
Size

75KB
MD5

f326a400bb2279daab3d478a7f44a2a0
SHA1

b9090eff37a71d270e2109fa232b9964661b529d
SHA256

38c169280066f7a97962b590844863ccee97d3167198afa1ab4398e6011234c8
SHA512

c14e42c2ad694ece0da0a89fb6a50e41cdd431f2da2cd53b98aa6a7637eef291df725a3e5be448badd9f4fd03b55f619aae7f42e8354c0d4971307b482ef76e6
SSDEEP

1536:PBgVp/YcrEfWHLWjd0Alcz2CHGkO7zyj8y2mU+RPpqUh:PBgVpjLAlcKlzPyjFUAP5h

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
38c169280066f7a97962b590844863ccee97d3167198afa1ab4398e6011234c8N

Files

38c169280066f7a97962b590844863ccee97d3167198afa1ab4398e6011234c8N
.exe windows:4 windows x86 arch:x86

959c086a8a160db172e52c3619233413

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

RemoveMenu
IsWindowVisible
DestroyMenu
GetMenu
CharLowerA
IsMenu
DestroyWindow
IsChild
DrawFrameControl
ChildWindowFromPoint
SendMessageW
GetWindowDC
ScreenToClient
ReleaseDC
GetLastActivePopup
IsDlgButtonChecked
OpenIcon
SetWindowLongW
EnumThreadWindows
GetWindowLongW
DeleteMenu
EnableScrollBar
SetWindowPos
SetClassLongA
GetSubMenu
EndPaint
GetDC
EnumChildWindows
ReleaseCapture
SetPropA
UnhookWindowsHookEx
SetWindowTextA
SetWindowPlacement
EnumWindows
UpdateWindow
RegisterClipboardFormatA
DrawMenuBar
DrawEdge
GetClassNameA
wsprintfA
ShowOwnedPopups
FrameRect
GetMenuStringA
CheckMenuItem
EqualRect
LoadIconA
CreatePopupMenu
GetIconInfo
RegisterWindowMessageA
ShowWindow
GetWindowTextLengthA
CharNextW
MessageBoxA
GetKeyboardLayoutNameA
GetDCEx
LoadCursorA
OffsetRect
MessageBeep
GetKeyboardLayout
GetTopWindow
CreateWindowExA
CallWindowProcA
ShowScrollBar

kernel32

VirtualAllocEx
GetModuleFileNameA
GetLocalTime
GetFullPathNameA
LoadLibraryA
ExitProcess
GetLocaleInfoA

Exports

Exports

_ZkY_tvxIgm@4
pnVBII
Bu7yvfRA1hsG@8
jnWuMB
dzcloHKx@16
n7axaLzaJUk
hUc20XBzeP
GUJQEsv_t
pvP7ogX8nY2

Sections

.text
Size: 15KB - Virtual size: 15KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 50KB - Virtual size: 86KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data
.rdata
.rsrc/0/DIALOG/TEXTFILEDLG
.rsrc/0/MANIFEST/1
.xml
.rsrc/0/RCDATA/DVCLAL
.rsrc/0/STRING/4094
.rsrc/0/STRING/4095
.rsrc/1033/BITMAP/BBABORT.bmp
.rsrc/1033/version.txt
.text

Sharing

General

Malware Config

Signatures

Files

959c086a8a160db172e52c3619233413

Headers

File Characteristics

Imports

user32

kernel32

Exports

Exports

Sections

.text Size: 15KB - Virtual size: 15KB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 50KB - Virtual size: 86KB

.rsrc Size: 5KB - Virtual size: 4KB

.text
Size: 15KB - Virtual size: 15KB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 50KB - Virtual size: 86KB

.rsrc
Size: 5KB - Virtual size: 4KB