707d49300a246c51b8b44512ad63ff5a

Sharing

Copy URL Twitter E-mail

General

Target

707d49300a246c51b8b44512ad63ff5a
Size

263KB
MD5

707d49300a246c51b8b44512ad63ff5a
SHA1

e075ccadf101eb9b775d42bb40884f1d2b57ea2d
SHA256

88b08471b083e5582732b6a758566a49dfa327c386a217bd6b0a79245e0ecd4b
SHA512

643c9095c7ea88d61b9e89933f244f623c0f16d500a47bfee99349259da9efb4bf638bc5dcf62247cf92e5862c856bb6ee150dd1bb75a94a75ef16f68bf0b1c4
SSDEEP

6144:PO6Gc3yKHUug5ADHYNHdo3EX38jMIc5USMD0Tfrlyncv4E:POGr9jSHdnX38j2egTrgE

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
707d49300a246c51b8b44512ad63ff5a

Files

707d49300a246c51b8b44512ad63ff5a
.exe windows:4 windows x86 arch:x86

6932beaac6362f4332911c2a4479a514

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

IsSystemResumeAutomatic
CompareStringW
GetLocalTime
LeaveCriticalSection
RaiseException
GetNumberFormatW
GetWriteWatch
FindResourceA
GetStringTypeA
DefineDosDeviceA
FindFirstVolumeMountPointA
CommConfigDialogW
IsProcessorFeaturePresent
lstrcatW
lstrcatA
QueueUserWorkItem
_lwrite
SetProcessAffinityMask
BackupRead
SystemTimeToTzSpecificLocalTime
Sleep
WaitCommEvent
FoldStringW
GetVolumeNameForVolumeMountPointA
EnumResourceLanguagesW
OutputDebugStringA
ConvertDefaultLocale
lstrcmpA
CreateHardLinkA
PostQueuedCompletionStatus
GetVolumeNameForVolumeMountPointW
GetProfileStringW
GetTempFileNameA
CreateDirectoryA
WritePrivateProfileStringW
GetCalendarInfoA
SearchPathA
WaitForSingleObjectEx
FileTimeToLocalFileTime
GetStringTypeW
EnterCriticalSection
InitializeCriticalSection
FreeEnvironmentStringsA
ExitProcess
GetExitCodeProcess
CreateMutexW
InterlockedExchangeAdd
CreateMailslotW
InterlockedDecrement

user32

GetMessageTime
GetWindow
SetWindowPos
OpenDesktopW
IsWindowEnabled
GetMenu
GetSysColorBrush
MessageBoxIndirectA
FrameRect
GetThreadDesktop
DdeFreeDataHandle
GetIconInfo
SetCursor
GetDlgItemTextA
EnumDisplayMonitors
SetMenuItemBitmaps
IsDialogMessageW
TrackMouseEvent
DdeConnect
SetPropW
CharUpperBuffW
WaitForInputIdle
DlgDirListW
DestroyIcon
CopyIcon
GetClientRect
DdeAbandonTransaction
DdeNameService
SendIMEMessageExA
SetSystemCursor
DialogBoxIndirectParamW
GetProcessWindowStation
CharPrevA
UnionRect
GetUserObjectInformationW
GetUserObjectInformationA
SetDeskWallpaper
DispatchMessageW
GetWindowModuleFileNameA
FindWindowW
DdeUnaccessData
RegisterWindowMessageW
LoadBitmapW
IsClipboardFormatAvailable
MessageBoxA
ChangeClipboardChain
DeregisterShellHookWindow
CharPrevW
IMPSetIMEA
GetQueueStatus
ExitWindowsEx
AdjustWindowRect
LoadCursorA
PostMessageA
SwapMouseButton
OemToCharA
GetKeyboardLayoutList
OemToCharBuffA
DefDlgProcW
CreateIconIndirect
UpdateWindow
SendMessageW
LoadAcceleratorsW
GetPropW
GetClassInfoExW
GetWindowRgn
MonitorFromPoint
RedrawWindow
BroadcastSystemMessageW
ChangeMenuW
GetNextDlgGroupItem
IsCharAlphaNumericW
GetKeyboardLayout
GetClassLongA
UnpackDDElParam
TrackPopupMenuEx
GetCaretBlinkTime
ReplyMessage
PostThreadMessageW
ShowCaret
GetMenuItemID
CharNextExA
GetDlgItemTextW
RegisterDeviceNotificationW

shell32

SHGetSettings
SHGetFolderLocation
SHGetIconOverlayIndexA
SheChangeDirExW
ExtractIconW
InternalExtractIconListW

winspool.drv

AddPrintProcessorA

Sections

.text
Size: 74KB - Virtual size: 74KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.pdata
Size: 44KB - Virtual size: 44KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 21KB - Virtual size: 73KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

6932beaac6362f4332911c2a4479a514

Headers

File Characteristics

Imports

kernel32

user32

shell32

winspool.drv

Sections

.text Size: 74KB - Virtual size: 74KB

.pdata Size: 44KB - Virtual size: 44KB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 21KB - Virtual size: 73KB

.rsrc Size: 14KB - Virtual size: 14KB

.text
Size: 74KB - Virtual size: 74KB

.pdata
Size: 44KB - Virtual size: 44KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 21KB - Virtual size: 73KB

.rsrc
Size: 14KB - Virtual size: 14KB