a833a98f232f7886819ef01098afb4bc09db82dc021788b43b5eb1e29631af9fN

General

Target

a833a98f232f7886819ef01098afb4bc09db82dc021788b43b5eb1e29631af9fN
Size

11KB
MD5

194a8960c2cad6740220ee008a5edef0
SHA1

637fd5bbb36007593af54f581c175a0f0ecedf0f
SHA256

a833a98f232f7886819ef01098afb4bc09db82dc021788b43b5eb1e29631af9f
SHA512

84a2ac93286f2aecdc5f4691bf457be54f00ba3e8dd0856762022b1fb91eb505f8ba26518aece8fa25d2d48470371be15e6db3741df3339151a5d23a503cb0c4
SSDEEP

192:8Wv/YfsRJTd63g4mVmwl+mWssC16+2nJFlz66dS1nA:8WGe4g4mVmwl+PLCw+27lz66cn

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a833a98f232f7886819ef01098afb4bc09db82dc021788b43b5eb1e29631af9fN

Files

a833a98f232f7886819ef01098afb4bc09db82dc021788b43b5eb1e29631af9fN
.exe windows:5 windows x86 arch:x86

c803080aaaeded3f4b8fdabc9fb7a7d5

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCommandLineA
SizeofResource
HeapValidate
lstrcatA
GetOverlappedResult
GetACP
InterlockedExchange
GetTickCount
GetProcessVersion
OpenEventA
WaitForDebugEvent
DuplicateHandle
lstrcpyA
LoadLibraryA
WaitForSingleObject
HeapFree
SystemTimeToFileTime
HeapAlloc
FreeResource
DosDateTimeToFileTime
GetThreadContext
MoveFileW

user32

SetWindowPos
GetSysColor
RedrawWindow
TranslateAcceleratorA
ReleaseDC
SetRect
TranslateMessage
GetDC
BeginPaint
GetClientRect
IsWindowEnabled
GetFocus
DrawTextA
LoadImageW
IsIconic
GetMessageW
GetWindowRect
DestroyWindow
EndPaint
ShowWindow
PostMessageA
IsWindowVisible
CloseWindow
ValidateRect
MoveWindow
DispatchMessageW
DrawMenuBar

gdi32

GetObjectA
CreateCompatibleDC
SelectObject
DeleteObject
DeleteDC
DrawEscape
UpdateColors

Exports

Exports

_Kill_Thread@4
_SellThatThing@8

Sections

.text
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

DATA1
Size: 512B - Virtual size: 512B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 346B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c803080aaaeded3f4b8fdabc9fb7a7d5

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

Exports

Exports

Sections

.text Size: 8KB - Virtual size: 7KB

.data Size: 2KB - Virtual size: 1KB

DATA1 Size: 512B - Virtual size: 512B

.rsrc Size: 512B - Virtual size: 16B

.reloc Size: 512B - Virtual size: 346B

.text
Size: 8KB - Virtual size: 7KB

.data
Size: 2KB - Virtual size: 1KB

DATA1
Size: 512B - Virtual size: 512B

.rsrc
Size: 512B - Virtual size: 16B

.reloc
Size: 512B - Virtual size: 346B