a181dde6c273f15fac0aaa71fa1fd214ebfcbc0522671a1ae079ecd10e5a28df[.]exe

General

Target

a181dde6c273f15fac0aaa71fa1fd214ebfcbc0522671a1ae079ecd10e5a28df.exe
Size

158KB
MD5

6baec7dda130e3d7b792464cd892fc41
SHA1

f0813d09958b6575709c4c1b5742dcd22050e8bc
SHA256

a181dde6c273f15fac0aaa71fa1fd214ebfcbc0522671a1ae079ecd10e5a28df
SHA512

b73ce3a3985ccd508a3045fe984960cdb005edfff3ea2c4a072bd05fd639c4fce87459d225754543e7e311e465b8e2ad9b8cd52d64545249935af6ba8fee75b6
SSDEEP

3072:0Ttz/7HY/M9V4CUYgCLSCxRwVoVGMrmB9N39//lOpcheMS+DsdLoP6WLx:0Ttj74SVZxMAYL3ZESh/DSnqx

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a181dde6c273f15fac0aaa71fa1fd214ebfcbc0522671a1ae079ecd10e5a28df.exe

Files

a181dde6c273f15fac0aaa71fa1fd214ebfcbc0522671a1ae079ecd10e5a28df.exe
.exe windows:4 windows x86 arch:x86

df5417bf0d82371b9d77c25c1ebed65e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_DEBUG_STRIPPED

Imports

oleacc

LresultFromObject
CreateStdAccessibleObject

kernel32

WriteConsoleInputVDMA
CompareFileTime
GetProcessHandleCount
GetFullPathNameW
EnumResourceNamesA
FreeEnvironmentStringsW
MoveFileW
SearchPathW
GetShortPathNameW
SetFileTime

ole32

CoCreateInstance
CoInitializeEx
CreateStreamOnHGlobal
CoTaskMemFree
CoTaskMemAlloc
CoUninitialize
CoInitialize

shell32

SHGetFolderPathW
ShellExecuteW
CommandLineToArgvW
SHFileOperationW
ShellExecuteExW

user32

DestroyWindow
PostMessageW
ReleaseDC
IsDlgButtonChecked
LoadIconW
IsWindow
GetWindowModuleFileNameW
SetWindowLongW
GetDlgCtrlID
SetWindowTextW
PostQuitMessage
GetDC
CreateCursor
GetFocus
MsgWaitForMultipleObjects

shlwapi

PathCombineW
PathRemoveFileSpecW
SHGetValueW
PathAppendW
PathFileExistsW

comctl32

PropertySheetW

Sections

.text
Size: 80KB - Virtual size: 80KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 74KB - Virtual size: 73KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idive
Size: 1024B - Virtual size: 248KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

df5417bf0d82371b9d77c25c1ebed65e

Headers

File Characteristics

Imports

oleacc

kernel32

ole32

shell32

user32

shlwapi

comctl32

Sections

.text Size: 80KB - Virtual size: 80KB

.rdata Size: 1KB - Virtual size: 1KB

.data Size: 74KB - Virtual size: 73KB

.idive Size: 1024B - Virtual size: 248KB

.text
Size: 80KB - Virtual size: 80KB

.rdata
Size: 1KB - Virtual size: 1KB

.data
Size: 74KB - Virtual size: 73KB

.idive
Size: 1024B - Virtual size: 248KB