a751506901b434fb99ecd36f53c8d8a650f21d40f1db7afaba021cc9d3ac3122N

General

Target

a751506901b434fb99ecd36f53c8d8a650f21d40f1db7afaba021cc9d3ac3122N
Size

236KB
MD5

03b6c1f004a48ae28fe2719084c16110
SHA1

f690fc9e1f624030bf7061296dcffdb4a1a89f6d
SHA256

a751506901b434fb99ecd36f53c8d8a650f21d40f1db7afaba021cc9d3ac3122
SHA512

8c20567fad3d98c777b6874b6dd043af8fe6317db776023c168116ade6325a69b2f3e97870c9976d3ff5051b9cbd4407b20c0832d5e593e0027d1c2641640806
SSDEEP

3072:XT5oKeqMhqBrMEewIAoqCA+Imum6A9ljWWBDjOIjP/44s4lET5Ee6//SfL/U:j5aqMhqutwIKCAb1ApWWUITQ4fETie6

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a751506901b434fb99ecd36f53c8d8a650f21d40f1db7afaba021cc9d3ac3122N

Files

a751506901b434fb99ecd36f53c8d8a650f21d40f1db7afaba021cc9d3ac3122N
.dll windows:4 windows x86 arch:x86

bd485d60e8132fe83107b2bf14c926d3

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

ExitProcess
ExitThread
GetCommandLineA
GetCurrentProcessId
GetCurrentThreadId
GetModuleHandleA
GetStartupInfoA
GetSystemTimeAsFileTime
GetTickCount
LoadLibraryA
QueryPerformanceCounter
SetEvent
SetUnhandledExceptionFilter
VirtualAlloc
VirtualProtect
WriteFile

msvcrt

strcpy
swprintf
wcscpy
strncat
strlen
fwrite
sscanf

user32

LoadAcceleratorsA
MoveWindow
InflateRect
PostMessageA
RegisterWindowMessageA
GetWindowPlacement
GetMenuItemCount
GetFocus
DrawIconEx
DrawEdge
CreatePopupMenu
CreateDialogParamA
CloseClipboard
MsgWaitForMultipleObjects
CheckMenuItem
CheckRadioButton

comctl32

InitCommonControls
ShowHideMenuCtl

oleaut32

VarUI2FromStr
VarUI1FromUI4
VarPow
VarI4FromI1
VarDecInt
OleCreatePropertyFrameIndirect
OleCreatePropertyFrame

Exports

Exports

Slgpdkkpinrauqu
Sottlzhu

Sections

.text
Size: 89KB - Virtual size: 92KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 77KB - Virtual size: 80KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 48KB - Virtual size: 136KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 21KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

bd485d60e8132fe83107b2bf14c926d3

Headers

File Characteristics

Imports

kernel32

msvcrt

user32

comctl32

oleaut32

Exports

Exports

Sections

.text Size: 89KB - Virtual size: 92KB

.rdata Size: 77KB - Virtual size: 80KB

.data Size: 48KB - Virtual size: 136KB

.rsrc Size: 21KB - Virtual size: 24KB

.text
Size: 89KB - Virtual size: 92KB

.rdata
Size: 77KB - Virtual size: 80KB

.data
Size: 48KB - Virtual size: 136KB

.rsrc
Size: 21KB - Virtual size: 24KB