71d08b17dd9f6bada2151c4c61a542af

Sharing

Copy URL Twitter E-mail

General

Target

71d08b17dd9f6bada2151c4c61a542af
Size

396KB
MD5

71d08b17dd9f6bada2151c4c61a542af
SHA1

6287f035c8b7b1e27138bfb61f74616f71b77fef
SHA256

07965ce784a45948f7ce5dcc9cd881439d4635d83f4ebb7d3c7811a185d9fada
SHA512

8d509a448603f6d21de7aad7430c5d7d53ededc3e71b85d6613d8adb3938765b4e165a701c84f78ffcfba05152f018b9ee1282a510cdec5e0db1352022f83bf3
SSDEEP

6144:e5DNmbSCggDIDjtj1rJP/psKFlMGhhBxB7Mt6uu4yfK2ggGFEpNlSy:KVCpQjtj1rJXpsShRJa6uZ2gapO

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
71d08b17dd9f6bada2151c4c61a542af

Files

71d08b17dd9f6bada2151c4c61a542af
.exe windows:4 windows x86 arch:x86

c23fc1e59aa95933855d8b31b9d858fd

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

version

VerQueryValueA
GetFileVersionInfoSizeA
GetFileVersionInfoA

kernel32

HeapAlloc
RaiseException
HeapReAlloc
HeapSize
GetCPInfo
GetACP
GetOEMCP
HeapFree
LCMapStringA
LCMapStringW
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetTimeZoneInformation
GetCommandLineA
GetFileType
GetStdHandle
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
SetUnhandledExceptionFilter
GetStringTypeA
GetStringTypeW
IsBadReadPtr
ExitProcess
TerminateProcess
SetFileTime
SetStdHandle
GetLocaleInfoA
GetLocaleInfoW
CompareStringA
CompareStringW
SetEnvironmentVariableA
lstrcmpA
GetCurrentThread
GetCurrentThreadId
GlobalFree
LockResource
FindResourceA
LoadResource
SetCurrentDirectoryA
CreateFileA
CreateFileMappingA
MapViewOfFile
UnmapViewOfFile
CloseHandle
GetFileInformationByHandle
GetLastError
FileTimeToLocalFileTime
FileTimeToSystemTime
SearchPathA
GlobalAlloc
GlobalLock
GlobalUnlock
GetSystemDirectoryA
GetModuleFileNameA
GetStartupInfoA
GetModuleHandleA
RtlUnwind
SetErrorMode
SystemTimeToFileTime
LocalFileTimeToFileTime
GetFileSize
GetThreadLocale
GetStringTypeExA
GetVolumeInformationA
FindFirstFileA
FindClose
LoadLibraryA
GetProcAddress
FreeLibrary
DeleteFileA
MoveFileA
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
GetCurrentProcess
DuplicateHandle
GetProcessVersion
GetVersion
GetCurrentDirectoryA
TlsGetValue
LocalReAlloc
TlsSetValue
EnterCriticalSection
GlobalReAlloc
LeaveCriticalSection
GlobalHandle
DeleteCriticalSection
TlsAlloc
InitializeCriticalSection
LocalAlloc
SetLastError
SizeofResource
GetShortPathNameA
GetDiskFreeSpaceA
GlobalFlags
lstrcmpiA
GetFileTime
GetFullPathNameA
GetTempFileNameA
IsBadWritePtr
GetFileAttributesA
lstrcpyA
GetProfileStringA
GlobalGetAtomNameA
MulDiv
LocalFree
MultiByteToWideChar
WideCharToMultiByte
InterlockedIncrement
lstrcpynA
WritePrivateProfileStringA
GetPrivateProfileStringA
GetPrivateProfileIntA
lstrcatA
GlobalAddAtomA
InterlockedDecrement
lstrlenA
GlobalDeleteAtom
IsBadCodePtr
GetEnvironmentStringsW
SetHandleCount

user32

EqualRect
SystemParametersInfoA
LoadIconA
LoadAcceleratorsA
DestroyMenu
CharUpperA
IsIconic
GetWindowDC
BeginPaint
EndPaint
TabbedTextOutA
DrawTextA
GrayStringA
SetRectEmpty
TranslateAcceleratorA
ReleaseCapture
GetDesktopWindow
SetMenu
ReuseDDElParam
UnpackDDElParam
BringWindowToTop
DefFrameProcA
TranslateMDISysAccel
DrawMenuBar
DefMDIChildProcA
RedrawWindow
InflateRect
SetCapture
OffsetRect
ClientToScreen
PtInRect
SetCursorPos
DestroyCursor
LoadCursorA
WaitMessage
GetWindowThreadProcessId
WindowFromPoint
IsZoomed
IntersectRect
SetParent
IsRectEmpty
AppendMenuA
DeleteMenu
GetSystemMenu
SetTimer
KillTimer
SetRect
GetClassNameA
InsertMenuA
GetMenuStringA
GetSysColorBrush
LoadStringA
DestroyIcon
InvertRect
FillRect
GetDCEx
LockWindowUpdate
GetScrollPos
SetScrollPos
GetTopWindow
IsChild
GetCapture
WinHelpA
wsprintfA
GetClassInfoA
RegisterClassA
GetMenuItemCount
GetMenuItemID
GetMenu
TrackPopupMenu
AdjustWindowRectEx
MapWindowPoints
CreateWindowExA
SetPropA
GetLastActivePopup
GetForegroundWindow
SetForegroundWindow
GetPropA
RemovePropA
GetMessageTime
GetWindow
GetWindowRect
RegisterWindowMessageA
SetFocus
ShowWindow
SetWindowPos
SetWindowLongA
GetWindowTextA
SetWindowTextA
IsDialogMessageA
SetDlgItemTextA
SendDlgItemMessageA
GetDlgItemTextA
UnhookWindowsHookEx
GetMenuCheckMarkDimensions
LoadBitmapA
GetMenuState
ModifyMenuA
SetMenuItemBitmaps
CheckMenuItem
EnableMenuItem
GetFocus
GetMessageA
TranslateMessage
DispatchMessageA
GetKeyState
CallNextHookEx
ValidateRect
IsWindowVisible
PeekMessageA
GetCursorPos
SetWindowsHookExA
MessageBoxA
SetCursor
ShowOwnedPopups
PostMessageA
PostQuitMessage
GetNextDlgTabItem
EndDialog
GetActiveWindow
SetActiveWindow
IsWindow
GetSystemMetrics
CreateDialogIndirectParamA
DestroyWindow
GetParent
GetWindowLongA
GetDlgItem
IsWindowEnabled
ScreenToClient
OpenClipboard
EmptyClipboard
SetClipboardData
CloseClipboard
GetMessagePos
LoadMenuA
GetSubMenu
CopyRect
GetSysColor
DrawFocusRect
GetClientRect
InvalidateRect
GetDC
ReleaseDC
SendMessageA
EnableWindow
UpdateWindow
DeferWindowPos
BeginDeferWindowPos
EndDeferWindowPos
DefWindowProcA
GetWindowTextLengthA
GetDlgCtrlID
CallWindowProcA
UnregisterClassA
HideCaret
ShowCaret
ExcludeUpdateRgn
DefDlgProcA
CharNextA
IsWindowUnicode

gdi32

CreateDIBitmap
SelectObject
CreateBitmap
PatBlt
CreateRectRgnIndirect
SetTextColor
SetBkColor
GetObjectA
DeleteDC
SaveDC
RestoreDC
SetBkMode
SetMapMode
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowExtEx
ScaleWindowExtEx
SelectClipRgn
ExcludeClipRect
GetClipBox
MoveToEx
IntersectClipRect
SetTextAlign
LineTo
GetTextAlign
DeleteObject
CreateRectRgn
GetDeviceCaps
CreateSolidBrush
CreatePatternBrush
PtVisible
RectVisible
TextOutA
ExtTextOutA
Escape
GetTextMetricsA
StretchDIBits
CreateCompatibleDC
CreateCompatibleBitmap
CreateFontIndirectA
CombineRgn
SetRectRgn
BitBlt
GetTextExtentPointA
GetStockObject

comdlg32

GetOpenFileNameA
GetSaveFileNameA
GetFileTitleA

winspool.drv

ClosePrinter
DocumentPropertiesA
OpenPrinterA

advapi32

RegSetValueA
RegQueryValueA
RegCreateKeyA
GetFileSecurityA
SetFileSecurityA
RegDeleteValueA
RegSetValueExA
RegQueryValueExA
RegOpenKeyExA
RegOpenKeyA
RegEnumKeyA
RegCreateKeyExA
RegCloseKey
RegDeleteKeyA

shell32

ExtractIconA
SHGetFileInfoA
DragQueryFileA
DragFinish
DragAcceptFiles
ShellExecuteExA
ShellExecuteA

comctl32

ImageList_Destroy
ImageList_LoadImageA
ImageList_Draw
ord17

Sections

.text
Size: 213KB - Virtual size: 213KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 44KB - Virtual size: 43KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 101KB - Virtual size: 116KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 27KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c23fc1e59aa95933855d8b31b9d858fd

Headers

File Characteristics

Imports

version

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

Sections

.text Size: 213KB - Virtual size: 213KB

.rdata Size: 44KB - Virtual size: 43KB

.data Size: 101KB - Virtual size: 116KB

.idata Size: 9KB - Virtual size: 9KB

.rsrc Size: 27KB - Virtual size: 27KB

.text
Size: 213KB - Virtual size: 213KB

.rdata
Size: 44KB - Virtual size: 43KB

.data
Size: 101KB - Virtual size: 116KB

.idata
Size: 9KB - Virtual size: 9KB

.rsrc
Size: 27KB - Virtual size: 27KB