15622a6a2750a6e5289b4114265ff820391b83b2e054f14f2a5ed871bd92a9b6N

General

Target

15622a6a2750a6e5289b4114265ff820391b83b2e054f14f2a5ed871bd92a9b6N
Size

238KB
MD5

1886510c30851fb8570cc377992e6440
SHA1

15a89d9ca7175af9886ca36f5be1ff53ec7bdcad
SHA256

15622a6a2750a6e5289b4114265ff820391b83b2e054f14f2a5ed871bd92a9b6
SHA512

123d67b19380ad3b694882f102e654568cdc2d9ff07cf489880adb64ffa54bea4e337ffe6909f480ecb9e0f68db7004017cfc0a144f99e7a45a6fa4fc27f83fa
SSDEEP

6144:LsabN60teq71yzjy95uw6Amr3/FxLoN5nQ8/SOSfan:Aatez2zzjm7/FxM/nx/z

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
15622a6a2750a6e5289b4114265ff820391b83b2e054f14f2a5ed871bd92a9b6N

Files

15622a6a2750a6e5289b4114265ff820391b83b2e054f14f2a5ed871bd92a9b6N
.exe windows:4 windows x86 arch:x86

0b696929f9ea0c7232b899b6bf9a8179

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetUserDefaultLCID
CloseHandle
GetCurrentDirectoryA
GenerateConsoleCtrlEvent
GetLocalTime
FindClose
FindNextFileA
FindFirstFileA
EnumResourceLanguagesA
WideCharToMultiByte
ReadFile
WriteFile
SetFilePointer
GlobalHandle
IsDBCSLeadByte
GetModuleHandleA
VirtualProtect
QueryPerformanceCounter
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
GetProcessHeap
GetModuleHandleW
CreateProcessA
GetTempFileNameA
HeapFree
HeapAlloc
LoadLibraryW
InterlockedExchange
Sleep
InterlockedCompareExchange
GetStartupInfoA
TerminateProcess

user32

SendDlgItemMessageA
IsDialogMessageA
SetWindowTextA
GetWindowRect
GetWindowPlacement
SystemParametersInfoW
CallWindowProcA
DefWindowProcA
PtInRect
DeferWindowPos

oleaut32

DispGetIDsOfNames
DispGetIDsOfNames
SafeArrayRedim
CreateErrorInfo
SafeArrayAllocDescriptorEx
GetErrorInfo
SetErrorInfo
GetActiveObject
VariantInit
SysFreeString

comdlg32

GetFileTitleA

oledlg

OleUIBusyA

Sections

.text
Size: 133KB - Virtual size: 184KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 102KB - Virtual size: 180KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

0b696929f9ea0c7232b899b6bf9a8179

Headers

File Characteristics

Imports

kernel32

user32

oleaut32

comdlg32

oledlg

Sections

.text Size: 133KB - Virtual size: 184KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 102KB - Virtual size: 180KB

.text
Size: 133KB - Virtual size: 184KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 102KB - Virtual size: 180KB