829754a3c58cc88bf79e3fe10997143d

Sharing

Copy URL Twitter E-mail

General

Target

829754a3c58cc88bf79e3fe10997143d
Size

104KB
MD5

829754a3c58cc88bf79e3fe10997143d
SHA1

5a20b8b67cd2e74d5adc6398765f1da079c6baf7
SHA256

c54186c857dea76597593e2bd64fb77ea36b0baee23f1512ea4d5ada2e3b62f4
SHA512

c3bba3c1b0c7dc19b0064e67129fc3355432377537fab914cc3f6b378d9069be8c49cb4a5612a5ae5fa1e5a5341287e31f5eb2c47fca8ceca0533ca2c9362a6c
SSDEEP

3072:zdvABAcd4T+dn00MXFVpljUzeGKzc69w5o:JvABZd4T+dufUzeGZ9

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
829754a3c58cc88bf79e3fe10997143d

Files

829754a3c58cc88bf79e3fe10997143d
.exe windows:4 windows x86 arch:x86

79aa061e727be9a46f357b6ea6873123

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

shell32

SHGetFileInfo
DragQueryFileA
ShellAboutA
DragAcceptFiles
DragFinish

winmm

waveOutReset
waveInGetPosition
waveOutGetPosition
waveInStart
mmioCreateChunk
mmioGetInfo
mmioOpenA
mmioDescend
mmioSeek
mmioRead
waveInReset
mmioAscend
waveOutPause
waveOutRestart
waveOutOpen
waveOutClose
waveInClose
waveInPrepareHeader
waveOutPrepareHeader
waveInAddBuffer
waveOutWrite
waveInUnprepareHeader
waveOutUnprepareHeader
waveInOpen
mmioClose
waveInGetNumDevs
waveOutGetNumDevs
mmioWrite

user32

DrawIcon
SetFocus
DrawMenuBar
DeleteMenu
SetForegroundWindow
ModifyMenuA
IsWindow
GetMenu
DialogBoxParamA
IsIconic
MoveWindow
GetWindowRect
EndDialog
DrawFocusRect
RemovePropA
CopyRect
RegisterClipboardFormatA
wsprintfW
SetPropA
SetWindowLongA
MapWindowPoints
GetPropA
SetRect
DrawEdge
GetFocus
GetActiveWindow
SetDlgItemTextA
InvalidateRect
CreateWindowExA
EnableWindow
KillTimer
GetAsyncKeyState
PeekMessageA
SetTimer
ShowWindow
InflateRect
DefWindowProcA
GetDC
ReleaseDC
BeginPaint
EndPaint
GetWindowTextA
GetDlgCtrlID
RegisterWindowMessageA
GetDlgItem
LoadIconA
DefDlgProcA
RegisterClassA
LoadAcceleratorsA
SetClassLongA
SetWindowTextA
CharNextA
CharPrevA
MessageBeep
GetWindowLongA
wvsprintfA
MessageBoxA
wsprintfA
OpenClipboard
GetClipboardData
LoadCursorA
CloseClipboard
SetCursor
PostQuitMessage
DestroyWindow
GetClientRect
FillRect
GetSysColor
LoadStringA
ClientToScreen
ScreenToClient
GetWindow
GetKeyState
EnableMenuItem
IsClipboardFormatAvailable
IsWindowEnabled
UpdateWindow
SendMessageA
WinHelpA
IsWindowVisible
SetActiveWindow
PostMessageA
GetSystemMetrics
CreateDialogParamA
GetMessageA
IsDialogMessageA
TranslateAcceleratorA
TranslateMessage
DispatchMessageA
CallWindowProcA
CreateMenu
DestroyMenu
SetWindowPos
RemoveMenu
GetParent
RedrawWindow
GetMenuStringA
InsertMenuA
GetSubMenu

gdi32

SelectPalette
CloseMetaFile
GetTextExtentPointA
SetBkColor
RealizePalette
DeleteObject
SetBrushOrgEx
CreateSolidBrush
ExtTextOutA
SelectObject
GetStockObject
SetTextColor
BitBlt
PatBlt
DeleteDC
CreateBitmap
CreateCompatibleDC
SetMapMode
CreateHatchBrush
DeleteMetaFile
SetWindowExtEx
StretchBlt
CreateCompatibleBitmap
GetDIBits
GetDeviceCaps
SetWindowOrgEx
CreateMetaFileA
GetObjectA

kernel32

VirtualFree
VirtualAlloc
GetCPInfo
GetLastError
GetFileType
GetACP
GetModuleFileNameA
GetStdHandle
GetOEMCP
ExitProcess
GetVersion
GetEnvironmentStrings
UnhandledExceptionFilter
GetModuleHandleA
GetTempFileNameA
lstrcpynA
RtlZeroMemory
MultiByteToWideChar
FreeResource
RtlUnwind
CreateThread
GlobalMemoryStatus
GetLocaleInfoA
GetCommandLineA
lstrlenA
lstrcatA
DeleteFileA
GetFullPathNameA
CreateFileA
CloseHandle
lstrcpyA
GlobalAlloc
GlobalLock
GlobalSize
LoadLibraryA
FreeLibrary
lstrcmpiA
MulDiv
lstrcmpA
GlobalHandle
GlobalUnlock
GlobalFree
GetProcAddress
LockResource
LoadResource
FindResourceA
RtlMoveMemory
WideCharToMultiByte
GlobalReAlloc
GetStartupInfoA
WaitForSingleObject

advapi32

RegCreateKeyExA
RegOpenKeyExA
RegDeleteValueA
RegCloseKey
RegSetValueExA
RegQueryValueExA

comdlg32

GetSaveFileNameA
GetOpenFileNameA

comctl32

PropertySheet
ord17
ord8

ole32

WriteClassStg
OleNoteObjectVisible
StgCreateDocfile
OleSave
CreateFileMoniker
OleInitialize
OleSetClipboard
OleIsCurrentClipboard
OleFlushClipboard
CoRevokeClassObject
CoRegisterClassObject
CoLockObjectExternal
OleUninitialize
CoCreateInstance
OleBuildVersion
CLSIDFromString
OleDraw
WriteClassStm
CreateStreamOnHGlobal
ReleaseStgMedium
CreateDataAdviseHolder
WriteFmtUserTypeStg
StgOpenStorage
CreateOleAdviseHolder
CoGetMalloc
GetRunningObjectTable
CreateBindCtx
StgCreateDocfileOnILockBytes
CreateILockBytesOnHGlobal
OleCreateMenuDescriptor
OleDestroyMenuDescriptor

msacm32

acmFormatSuggest
acmStreamClose
acmStreamOpen
acmFormatDetailsA
acmFormatTagDetailsA
acmFormatChooseA
acmMetrics
acmStreamSize
acmStreamUnprepareHeader
acmStreamConvert
acmStreamPrepareHeader

Sections

.text
Size: 63KB - Virtual size: 63KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 17KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

79aa061e727be9a46f357b6ea6873123

Headers

File Characteristics

Imports

shell32

winmm

user32

gdi32

kernel32

advapi32

comdlg32

comctl32

ole32

msacm32

Sections

.text Size: 63KB - Virtual size: 63KB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 4KB - Virtual size: 6KB

.idata Size: 7KB - Virtual size: 6KB

.rsrc Size: 17KB - Virtual size: 20KB

.reloc Size: 7KB - Virtual size: 7KB

.text
Size: 63KB - Virtual size: 63KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 4KB - Virtual size: 6KB

.idata
Size: 7KB - Virtual size: 6KB

.rsrc
Size: 17KB - Virtual size: 20KB

.reloc
Size: 7KB - Virtual size: 7KB