2a815990a4bcd2644c9a7d85989e9b2c4d1664121164950c3a6eba12327fc6ed

Sharing

Copy URL

Twitter E-mail

General

Target

2a815990a4bcd2644c9a7d85989e9b2c4d1664121164950c3a6eba12327fc6ed
Size

33KB
MD5

d88adc6703e4ae2c6860d94baa200fef
SHA1

ca0de2f10c1a5f8c7def84f84886192cd8071f8c
SHA256

2a815990a4bcd2644c9a7d85989e9b2c4d1664121164950c3a6eba12327fc6ed
SHA512

5020bd336b99238e8332be5b9648424ba52e05c33675fa4359bb701ba2faf4ca74ff88fac929da6124c276ecf5040a94fcad5373aea159888f5629deee9f08ea
SSDEEP

768:vKNflUtOro5a+1a0Hv1T8A8TPl0NYotL:v0iOs3bISNYot

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

Processes:

resource
2a815990a4bcd2644c9a7d85989e9b2c4d1664121164950c3a6eba12327fc6ed

Files

2a815990a4bcd2644c9a7d85989e9b2c4d1664121164950c3a6eba12327fc6ed
.exe windows:1 windows x86 arch:x86

dd0b45a0c8731a952fbe65b3aa913d07

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

shell32

ShellExecuteA
DragQueryFileA
DragFinish
DragAcceptFiles
ShellAboutA

kernel32

LocalAlloc
LocalLock
LocalReAlloc
lstrlenA
_lclose
DeleteFileA
_lwrite
LocalUnlock
lstrcmpA
lstrcpynA
_llseek
LocalFree
GlobalUnlock
GlobalLock
GlobalAlloc
GetLocalTime
GetTimeFormatA
GetDateFormatA
lstrcmpiA
GetProfileStringA
lstrcatA
FindFirstFileA
FindClose
lstrcpyA
GetLastError
CreateFileA
GetCommandLineA
GetLocaleInfoA
GlobalFree
ExitProcess
GetStartupInfoA
GetModuleHandleA
_lcreat
_lopen
_lread

user32

GetMessageA
IsDialogMessageA
GetWindowTextA
CharNextA
CheckMenuItem
CloseClipboard
IsClipboardFormatAvailable
OpenClipboard
GetSubMenu
GetMenu
LoadStringA
LoadAcceleratorsA
GetSystemMenu
RegisterWindowMessageA
SetWindowLongA
CreateWindowExA
LoadCursorA
RegisterClassExA
GetSystemMetrics
SetCursor
UpdateWindow
CharPrevA
GetClientRect
PeekMessageA
SetDlgItemTextA
TabbedTextOutA
CreateDialogParamA
EnableWindow
TranslateAcceleratorA
ReleaseDC
GetDC
SendDlgItemMessageA
GetDlgCtrlID
ChildWindowFromPoint
ScreenToClient
GetCursorPos
GetDlgItemTextA
wsprintfA
PostQuitMessage
IsIconic
DestroyWindow
MessageBeep
MessageBoxA
DefWindowProcA
EnableMenuItem
GetLastActivePopup
ShowWindow
EndDialog
SetForegroundWindow
WinHelpA
LoadIconA
SendMessageA
GetFocus
PostMessageA
SetFocus
InvalidateRect
MoveWindow
DispatchMessageA
TranslateMessage
SetWindowTextA

gdi32

CreateDCA
GetTextCharset
SelectObject
GetStockObject
DeleteDC
AbortDoc
DeleteObject
StartPage
StartDocA
EndPage
GetTextExtentPointA
GetDeviceCaps
SetAbortProc
GetTextMetricsA
SetBkMode
CreateFontA
LPtoDP
SetWindowExtEx
SetMapMode
EndDoc
SetViewportExtEx

comdlg32

GetSaveFileNameA
PageSetupDlgA
FindTextA
GetOpenFileNameA
GetFileTitleA
CommDlgExtendedError

Sections

.text
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: - Virtual size: 1KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 530B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

dd0b45a0c8731a952fbe65b3aa913d07

Headers

File Characteristics

Imports

shell32

kernel32

user32

gdi32

comdlg32

Sections

.text Size: 14KB - Virtual size: 14KB

.bss Size: - Virtual size: 1KB

.data Size: 1024B - Virtual size: 530B

.idata Size: 3KB - Virtual size: 3KB

.rsrc Size: 11KB - Virtual size: 10KB

.reloc Size: 2KB - Virtual size: 2KB

.text
Size: 14KB - Virtual size: 14KB

.bss
Size: - Virtual size: 1KB

.data
Size: 1024B - Virtual size: 530B

.idata
Size: 3KB - Virtual size: 3KB

.rsrc
Size: 11KB - Virtual size: 10KB

.reloc
Size: 2KB - Virtual size: 2KB