a8baf3636cb2d300d83178f06fbd3ae866e35e0aff8646998db3adb480055d91

Sharing

Copy URL Twitter E-mail

General

Target

a8baf3636cb2d300d83178f06fbd3ae866e35e0aff8646998db3adb480055d91
Size

37KB
MD5

7b1766c7dc367cf96d48dcd33cb87d8c
SHA1

848d930cdcbb25d0e32b873597629543c12c21b8
SHA256

a8baf3636cb2d300d83178f06fbd3ae866e35e0aff8646998db3adb480055d91
SHA512

33fa0b8dba752e48fdcefcef963c0f151d53f22fbcf0789550c5d6fe57ce316e0f28e1df7f477a0ca54c3a49c6ffd2e188853f8e3e003ac092a0a7138b9913f1
SSDEEP

384:41j2uXHfIR02i1vOlgUU3u7woLHbQTR6CA9Fb+pIIVjpreNrpe8AAco0We7:4Nh3fyQexU3cw87O6FbAbBleFQNWpe

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a8baf3636cb2d300d83178f06fbd3ae866e35e0aff8646998db3adb480055d91

Files

a8baf3636cb2d300d83178f06fbd3ae866e35e0aff8646998db3adb480055d91
.exe windows x86

b5c4d293ab0a5124dde8e9d8c300cfba

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

ImageList_AddMasked
ImageList_Create
InitCommonControlsEx

shlwapi

StrStrIW

kernel32

FindFirstFileA
FormatMessageA
GetLastError
GetProcAddress
GetModuleHandleA
FreeLibrary
LoadLibraryA
GetPrivateProfileStringA
WritePrivateProfileStringA
DeleteFileA
GetVersionExA
MultiByteToWideChar
GlobalUnlock
GlobalLock
GetShortPathNameA
GetModuleFileNameA
GetStartupInfoA
FindClose

user32

DefWindowProcA
PostMessageA
GetClientRect
EndDialog
GetDlgItem
SetDlgItemTextA
GetDlgItemTextA
GetWindowPlacement
SetWindowPlacement
LoadMenuA
GetSubMenu
DeleteMenu
DestroyMenu
GetMessagePos
ScreenToClient
DialogBoxParamA
PostQuitMessage
SetForegroundWindow
MessageBoxA
ClientToScreen
CheckMenuItem
SetWindowPos
GetSystemMetrics
GetWindowRect
GetParent
SendMessageTimeoutA
LoadBitmapA
TrackPopupMenu
InvalidateRect
GetForegroundWindow
GetWindowThreadProcessId
AttachThreadInput
GetFocus
GetClassNameA
GetWindowTextW
SetWindowTextW
SendMessageA
SetFocus
UnregisterClassA
SystemParametersInfoA
GetDesktopWindow
CreateWindowExA
UpdateWindow
LoadIconA
LoadCursorA
RegisterClassExA
LoadStringA
FindWindowA
IsWindow
ShowWindow
LoadAcceleratorsA
GetMessageA
TranslateAcceleratorA
TranslateMessage
DispatchMessageA
RegisterWindowMessageA
GetSystemMenu

gdi32

CreateSolidBrush
DeleteObject
GetObjectA
GetStockObject
SetBkColor
SetTextColor
CreateFontIndirectA

comdlg32

GetSaveFileNameA
ChooseColorA
ChooseFontA

shell32

DragQueryFileW

ole32

ReleaseStgMedium
OleInitialize
OleUninitialize
RegisterDragDrop

oleaut32

SysFreeString
SysAllocString

msvcrt

__getmainargs
_acmdln
_initterm
_XcptFilter
_exit
_onexit
__dllonexit
__setusermatherr
wcsncpy
_except_handler3
fwrite
fwprintf
fopen
strrchr
_wfopen
fseek
ftell
fread
fclose
wcslen
wcscat
atoi
strchr
_snprintf
malloc
free
??3@YAXPAX@Z
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
_controlfp
wcsstr
exit
_stricmp

Sections

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 11KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 21KB - Virtual size: 21KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

b5c4d293ab0a5124dde8e9d8c300cfba

Headers

File Characteristics

Imports

comctl32

shlwapi

kernel32

user32

gdi32

comdlg32

shell32

ole32

oleaut32

msvcrt

Sections

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 11KB - Virtual size: 12KB

.rsrc Size: 21KB - Virtual size: 21KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 11KB - Virtual size: 12KB

.rsrc
Size: 21KB - Virtual size: 21KB