004fde26ed113079a15814cc892ed232206ab5807cb13242eb4a642c695bc1cdN

Sharing

Copy URL Twitter E-mail

General

Target

004fde26ed113079a15814cc892ed232206ab5807cb13242eb4a642c695bc1cdN
Size

78KB
MD5

f8b4ec74a6e8731d2ee38df59af3a6c0
SHA1

611339cf9c0fff6791d50ae954b1a97f5c5a0c1a
SHA256

004fde26ed113079a15814cc892ed232206ab5807cb13242eb4a642c695bc1cd
SHA512

ee92a2a13c1b5648178192cd3c3030cb48018238e78924056c9f5515d1449ea15088b7ba1385dcbcacf7fd326b4ff42d251de5748816411989482c47e1bf9b85
SSDEEP

1536:82zzsFYKbJICuapwahCjwl4jkhQ/HCm0M7wCFs0olU++K:82zzTs0aiwCjwlVFznP

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
004fde26ed113079a15814cc892ed232206ab5807cb13242eb4a642c695bc1cdN

Files

004fde26ed113079a15814cc892ed232206ab5807cb13242eb4a642c695bc1cdN
.exe windows:3 windows x86 arch:x86

60077e8e3b54cbb22c4e4e808787378f

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetTickCount
GetTempFileNameA
IsValidLocale
MultiByteToWideChar
GetWindowsDirectoryA
LocalAlloc
GetAtomNameW
IsDebuggerPresent
lstrcmpA
GetMailslotInfo
LoadLibraryW
VirtualAlloc
CreateSemaphoreW
GetShortPathNameA
GetCalendarInfoA
EnumDateFormatsA
GetSystemDefaultLCID
GetSystemInfo
FindResourceA
ExpandEnvironmentStringsW
CopyFileExA
lstrlen
lstrcmpW
GetModuleFileNameW
LoadLibraryA
GetStartupInfoA
OpenFile
GetWindowsDirectoryA
GetStringTypeA
GetPriorityClass
SleepEx
OpenWaitableTimerW
GetLogicalDriveStringsW
GetExitCodeProcess
CloseHandle
ExitProcess

user32

CharPrevW
GetMenuItemID
GetKeyboardLayout
DrawTextA
GetMenu
GetKeyState
ShowCaret
CreateDialogIndirectParamW
WinHelpW
BringWindowToTop
CallWindowProcA
CreateWindowExA
GetWindowTextLengthW
MonitorFromWindow
DefDlgProcA
GetDlgItemTextA
AppendMenuA
DefWindowProcW
EnumDesktopWindows

gdi32

GetFontUnicodeRanges
GetNearestPaletteIndex
GetPixelFormat
RestoreDC
GetCharWidthI
GetGlyphOutlineW
ExtEscape
CreateScalableFontResourceW
RealizePalette
CreateICW
GetArcDirection
EqualRgn
CreateFontA
FrameRgn

advapi32

RegDeleteKeyA
RegQueryMultipleValuesW
RegReplaceKeyA
RegOpenKeyExA
RegQueryMultipleValuesA

shlwapi

PathAppendW

Sections

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.dck
Size: 1024B - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.9UV
Size: 1024B - Virtual size: 31KB

IMAGE_SCN_MEM_READ

.text
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.94
Size: 1024B - Virtual size: 17KB

IMAGE_SCN_MEM_READ

.G4lA1
Size: 1024B - Virtual size: 16KB

IMAGE_SCN_MEM_READ

.stuJ
Size: 1024B - Virtual size: 5KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.7915BS
Size: 1024B - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.7
Size: 1024B - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 19KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 76KB - Virtual size: 76KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

60077e8e3b54cbb22c4e4e808787378f

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shlwapi

Sections

.rdata Size: 2KB - Virtual size: 2KB

.dck Size: 1024B - Virtual size: 5KB

.9UV Size: 1024B - Virtual size: 31KB

.text Size: 14KB - Virtual size: 13KB

.94 Size: 1024B - Virtual size: 17KB

.G4lA1 Size: 1024B - Virtual size: 16KB

.stuJ Size: 1024B - Virtual size: 5KB

.7915BS Size: 1024B - Virtual size: 2KB

.7 Size: 1024B - Virtual size: 22KB

.data Size: 19KB - Virtual size: 19KB

.rsrc Size: 76KB - Virtual size: 76KB

.rdata
Size: 2KB - Virtual size: 2KB

.dck
Size: 1024B - Virtual size: 5KB

.9UV
Size: 1024B - Virtual size: 31KB

.text
Size: 14KB - Virtual size: 13KB

.94
Size: 1024B - Virtual size: 17KB

.G4lA1
Size: 1024B - Virtual size: 16KB

.stuJ
Size: 1024B - Virtual size: 5KB

.7915BS
Size: 1024B - Virtual size: 2KB

.7
Size: 1024B - Virtual size: 22KB

.data
Size: 19KB - Virtual size: 19KB

.rsrc
Size: 76KB - Virtual size: 76KB