b9be348cfa3d4393ca5bbd0290639289d7f0b6db9830df657bb12daaa56f3c88

Sharing

Copy URL Twitter E-mail

General

Target

b9be348cfa3d4393ca5bbd0290639289d7f0b6db9830df657bb12daaa56f3c88
Size

277KB
MD5

10d908656f2c6af16e2f8c6cd7364ac0
SHA1

3e2b2b74e766ca1d1ec1824a6423217d012e5eba
SHA256

b9be348cfa3d4393ca5bbd0290639289d7f0b6db9830df657bb12daaa56f3c88
SHA512

930b110f265e8c8b67ff72a66e9cf94a46cc24f4e53b87f612630d45e640708e37f0475c5d024dcd39ebee066a4ac95c78d15982c893708e4d34ca9f060b324c
SSDEEP

3072:INYcZtbaKvZYEQ31zCd8Kp05HuB/WTIDylH8V2eHbPAHDQrzrnkGJsHVQSmhx5gP:IN5fZYLGpw

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b9be348cfa3d4393ca5bbd0290639289d7f0b6db9830df657bb12daaa56f3c88

Files

b9be348cfa3d4393ca5bbd0290639289d7f0b6db9830df657bb12daaa56f3c88
.exe windows:5 windows x86

48e42d1f1c7c917a3f3f1c867af66bc3

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

DrawTextW
UpdateWindow
GetDlgItemTextW
InflateRect
SetDlgItemTextW
SetRect
GetDC
CreateWindowExW
ReleaseDC
EnableWindow
TranslateMessage
TranslateAcceleratorW
SetProcessDefaultLayout
RegisterWindowMessageW
RegisterClassExW
PostQuitMessage
MoveWindow
MonitorFromRect
LoadImageW
LoadAcceleratorsW
IsDialogMessageW
IsClipboardFormatAvailable
InvalidateRect
IntersectRect
GetMonitorInfoW
GetWindowRect
GetSystemMetrics
GetMessageW
GetMenu
DispatchMessageW
DestroyAcceleratorTable
DefWindowProcW
CheckMenuItem
CallWindowProcW
WinHelpW
ShowWindow
SetWindowTextW
SetWindowLongW
SetFocus
SetDlgItemInt
SetCursor
SendMessageW
SendDlgItemMessageW
PostMessageW
MessageBoxW
LoadStringW
LoadIconW
LoadCursorW
GetWindowTextLengthW
GetWindowTextW
GetDlgItemInt
GetDlgItem
GetClientRect
EndDialog
EnableMenuItem
DialogBoxParamW
DestroyWindow

gdi32

StartPage
StartDocW
SetMapMode
SelectObject
Rectangle
GetTextMetricsW
GetTextExtentPoint32W
GetStockObject
GetDeviceCaps
EndPage
EndDoc
DeleteDC
AbortDoc
DeleteObject
CreateFontIndirectW
TextOutW

comctl32

CreateStatusWindowW

comdlg32

PrintDlgW
ChooseFontW
FindTextW
GetOpenFileNameW
GetSaveFileNameW
ReplaceTextW
PageSetupDlgW
GetFileTitleW

advapi32

RegSetValueExW
RegQueryValueExW
RegOpenKeyW
RegCreateKeyExW
RegCloseKey
IsTextUnicode

shell32

DragQueryFileW
DragFinish
DragAcceptFiles
ShellExecuteW
ShellAboutW
SHAddToRecentDocs

msvcrt

__lconv_init
signal
_wcmdln
__winitenv
_initterm
_fpreset
_cexit
exit
__set_app_type
memset
wcscat
wcscmp
wcscpy
wcsrchr
_vsnwprintf
_assert
iswctype
wcslen
wcsncmp
wcsncpy
_wcsnicmp
towupper
memcpy
malloc
__setusermatherr
_amsg_exit
__wgetmainargs

kernel32

LocalUnlock
LocalLock
LocalFree
HeapFree
HeapAlloc
GetProcessHeap
GetProcAddress
GetLocalTime
GetLastError
GetFileAttributesW
GetDateFormatW
CreateFileW
CloseHandle
TlsGetValue
GetStartupInfoW
SetUnhandledExceptionFilter
Sleep
GetCurrentProcessId
GetCurrentThreadId
GetSystemTimeAsFileTime
GetTimeFormatW
GetTickCount
QueryPerformanceCounter
GetFullPathNameW
GlobalFree
lstrlenW
GetUserDefaultUILanguage
CreateThread
LocalAlloc
MulDiv
GetUserDefaultLangID
CreateFileMappingW
GetFileSize
LocalReAlloc
MapViewOfFile
UnmapViewOfFile
WriteFile
MultiByteToWideChar
FormatMessageW
WideCharToMultiByte
GetModuleHandleA
LoadLibraryW
DeleteCriticalSection
EnterCriticalSection
InitializeCriticalSection
LeaveCriticalSection
GetModuleFileNameW

Sections

.text
Size: 29KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 238KB - Virtual size: 237KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

48e42d1f1c7c917a3f3f1c867af66bc3

Headers

DLL Characteristics

File Characteristics

Imports

user32

gdi32

comctl32

comdlg32

advapi32

shell32

msvcrt

kernel32

Sections

.text Size: 29KB - Virtual size: 28KB

.rdata Size: 6KB - Virtual size: 6KB

.data Size: 512B - Virtual size: 5KB

.rsrc Size: 238KB - Virtual size: 237KB

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 29KB - Virtual size: 28KB

.rdata
Size: 6KB - Virtual size: 6KB

.data
Size: 512B - Virtual size: 5KB

.rsrc
Size: 238KB - Virtual size: 237KB

.reloc
Size: 2KB - Virtual size: 1KB