3f3454d48e71541329e61c48a467fb5d554bde187cb60a8a8aa1a2bb7b8254c6

Sharing

Copy URL Twitter E-mail

General

Target

3f3454d48e71541329e61c48a467fb5d554bde187cb60a8a8aa1a2bb7b8254c6
Size

426KB
MD5

84f4553804d7d7aa2ea75bdef3422d65
SHA1

a584e7463ebd5fe9d21dfbbd441ec87b937f51d7
SHA256

3f3454d48e71541329e61c48a467fb5d554bde187cb60a8a8aa1a2bb7b8254c6
SHA512

b8e3ade266ff870a551d5a5cc5793806dea243ed96a3ff0826aa9aac644f044b8833d01766ef78acdb0dc9993d7274080c272861afa191f7b1d5dcbb05d375d0
SSDEEP

3072:M6wGgqDvj+bOC7/oVz2S/oWXfZO3R/yslHFYywYSBKva6oAf/y29mNoLa5pS/l5a:rZcOAgjg95Yf

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3f3454d48e71541329e61c48a467fb5d554bde187cb60a8a8aa1a2bb7b8254c6

Files

3f3454d48e71541329e61c48a467fb5d554bde187cb60a8a8aa1a2bb7b8254c6
.exe windows:5 windows x86

759a1758c422a3a5bfe4ed6b48ca776a

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

DestroyIcon
TranslateAcceleratorW
SetProcessDefaultLayout
LoadAcceleratorsW
wsprintfW
SetDlgItemTextW
GetParent
TranslateMessage
GetMessageW
DispatchMessageW
GetDlgItemTextW
UnregisterClassW
TrackPopupMenuEx
ShowWindow
SetWindowPos
SetFocus
RegisterClassExW
PtInRect
PostQuitMessage
PostMessageW
LoadMenuW
LoadIconW
LoadCursorW
GetWindowRect
GetCursorPos
GetClientRect
DialogBoxParamW
DestroyMenu
DefWindowProcW
SetMenuDefaultItem
GetSystemMetrics
GetSubMenu
GetMenuState
GetMenu
EnableMenuItem
CreateWindowExW
CheckMenuRadioItem
MessageBoxW
EnableWindow
SetWindowLongW
SendDlgItemMessageW
GetWindowLongW
SetWindowTextW
SendMessageW
LoadStringW
LoadImageW
GetWindowTextLengthW
GetWindowTextW
GetDlgItem
EndDialog
DestroyWindow
CreateDialogParamW

gdi32

DeleteObject

advapi32

ChangeServiceConfig2W
ControlService
OpenSCManagerW
OpenServiceW
QueryServiceStatusEx
CreateServiceW
DeleteService
QueryServiceConfigW
EnumDependentServicesW
ChangeServiceConfigW
LockServiceDatabase
StartServiceW
EnumServicesStatusExW
CloseServiceHandle
QueryServiceConfig2W
UnlockServiceDatabase

comctl32

ImageList_Destroy
ImageList_Create
ImageList_ReplaceIcon
ImageList_AddMasked
PropertySheetW
InitCommonControlsEx

shell32

ShellAboutW

comdlg32

GetOpenFileNameW
GetSaveFileNameW
CommDlgExtendedError

msvcrt

_cexit
_fpreset
_initterm
__winitenv
_wcmdln
signal
wcsstr
__lconv_init
__set_app_type
__wgetmainargs
malloc
exit
__setusermatherr
memcpy
memset
wcscmp
_snwprintf
_beginthreadex
_endthreadex
wcslen
wcscpy
_wcsicmp
iswctype
wcschr
_amsg_exit

kernel32

LocalFree
HeapFree
HeapAlloc
Sleep
GetTickCount
GetLastError
TlsGetValue
LeaveCriticalSection
InitializeCriticalSection
EnterCriticalSection
DeleteCriticalSection
GetProcessHeap
CreateFileW
GetModuleHandleA
QueryPerformanceCounter
GetSystemTimeAsFileTime
GetCurrentThreadId
GetCurrentProcessId
SetUnhandledExceptionFilter
GetStartupInfoW
GetProcAddress
HeapReAlloc
GetUserDefaultUILanguage
LoadLibraryW
CloseHandle
WriteFile
FindResourceW
FormatMessageW
LoadResource
LocalAlloc
LockResource
GetModuleHandleW
SetLastError

ntdll

DbgPrint

Sections

.text
Size: 35KB - Virtual size: 35KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 188B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 381KB - Virtual size: 381KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

759a1758c422a3a5bfe4ed6b48ca776a

Headers

DLL Characteristics

File Characteristics

Imports

user32

gdi32

advapi32

comctl32

shell32

comdlg32

msvcrt

kernel32

ntdll

Sections

.text Size: 35KB - Virtual size: 35KB

.rdata Size: 6KB - Virtual size: 6KB

.data Size: 512B - Virtual size: 188B

.rsrc Size: 381KB - Virtual size: 381KB

.reloc Size: 1KB - Virtual size: 1KB

.text
Size: 35KB - Virtual size: 35KB

.rdata
Size: 6KB - Virtual size: 6KB

.data
Size: 512B - Virtual size: 188B

.rsrc
Size: 381KB - Virtual size: 381KB

.reloc
Size: 1KB - Virtual size: 1KB