fd00f25b8db161c1fd2f391a401b3f05c5e74eb27dccd2a13f3126e35e48c357[.]exe

General

Target

fd00f25b8db161c1fd2f391a401b3f05c5e74eb27dccd2a13f3126e35e48c357.exe
Size

130KB
MD5

c7eb28c3e814d480451fb2b3701a16e2
SHA1

6842c206fbb25b9dd650decb07de321ebd80d3d7
SHA256

fd00f25b8db161c1fd2f391a401b3f05c5e74eb27dccd2a13f3126e35e48c357
SHA512

bb523df8e5c334b2d223f986be6e67942ab193e8daba7771fb3d520197ad077dc4ff68c98fa8e86db9edc0224e1881bd928404b4bd91c8f78e3bd46c7a0bb89c
SSDEEP

3072:3JqZJIYdZ+1+viXzM0VZD1RP/XU/UKKUcjCHevb0o:5qZJIYdZ+IviXYcRnU/U2cjCxo

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fd00f25b8db161c1fd2f391a401b3f05c5e74eb27dccd2a13f3126e35e48c357.exe

Files

fd00f25b8db161c1fd2f391a401b3f05c5e74eb27dccd2a13f3126e35e48c357.exe
.exe windows:5 windows x86 arch:x86

fe5dcf4e1c7858bb74a14ef6a22bada9

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetStringTypeA
DeviceIoControl
GetPrivateProfileIntA
CreateDirectoryW
VirtualProtectEx
GetFileAttributesW
SetLastError
GetModuleHandleA
CloseHandle
GetVersionExA
LocalFlags
GetCurrentProcess
HeapFree
GetStdHandle
CreateEventA
GlobalLock
RemoveDirectoryW
FindClose
GetCurrentThread
GetPrivateProfileSectionA
GetFileAttributesW

user32

GetWindowLongW
IsZoomed
IsWindow
IsDialogMessageA
InsertMenuW
SetCursorPos
PostMessageW
DispatchMessageA
wsprintfW
GetWindowTextW
SetFocus
PeekMessageW
LoadCursorW

ntmarta

AccGetExplicitEntries
AccConvertSDToAccess
AccFreeIndexArray
AccConvertAclToAccess

uxtheme

CloseThemeData

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 11KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 512B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 121KB - Virtual size: 121KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.import
Size: 512B - Virtual size: 376B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

fe5dcf4e1c7858bb74a14ef6a22bada9

Headers

File Characteristics

Imports

kernel32

user32

ntmarta

uxtheme

Sections

.text Size: 4KB - Virtual size: 3KB

.rdata Size: 3KB - Virtual size: 11KB

.data Size: 512B - Virtual size: 512B

.rsrc Size: 121KB - Virtual size: 121KB

.import Size: 512B - Virtual size: 376B

.text
Size: 4KB - Virtual size: 3KB

.rdata
Size: 3KB - Virtual size: 11KB

.data
Size: 512B - Virtual size: 512B

.rsrc
Size: 121KB - Virtual size: 121KB

.import
Size: 512B - Virtual size: 376B