d748ebffbea7b01d867c21b2e3fb8d90

Sharing

Copy URL Twitter E-mail

General

Target

d748ebffbea7b01d867c21b2e3fb8d90
Size

196KB
MD5

d748ebffbea7b01d867c21b2e3fb8d90
SHA1

991f788af252a81968c1bc7fefc8d2223cbcd809
SHA256

13a306b2273ba4febd114eb570a829a7631b1de70300b63399cdf05f2d8d7aff
SHA512

eb8a2b95d21a519aa8757ae226fbe75d5ac6764883b8eadbb1fbb383748956e99b57958b68204c1407ad6df7d4837c67538028729217817210921a9833533312
SSDEEP

3072:lF9il6NdyrUHYhqxJgf3lT9CcoHuP1W3LY/faHM1PsEwjmpUHz7cVz7:b9GOdfHQ4Hx3c6MVsHAUvs

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d748ebffbea7b01d867c21b2e3fb8d90

Files

d748ebffbea7b01d867c21b2e3fb8d90
.exe windows:4 windows x86 arch:x86

8984288d79e70019270ad748b43dc9fe

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

shell32

SHGetFileInfoA
DragQueryFileA
ShellAboutA
DragAcceptFiles
DragFinish

winmm

waveOutReset
waveInGetPosition
waveOutGetPosition
waveInStart
mmioCreateChunk
mmioGetInfo
mmioOpenA
mmioDescend
mmioSeek
mmioRead
waveInReset
mmioAscend
waveOutPause
waveOutRestart
waveOutOpen
waveOutClose
waveInClose
waveInPrepareHeader
waveOutPrepareHeader
waveInAddBuffer
waveOutWrite
waveInUnprepareHeader
waveOutUnprepareHeader
waveInOpen
mmioClose
waveInGetNumDevs
waveOutGetNumDevs
mmioWrite

user32

DrawIcon
SetFocus
DrawMenuBar
DeleteMenu
SetForegroundWindow
ModifyMenuA
IsWindow
GetMenu
DialogBoxParamA
IsIconic
MoveWindow
GetWindowRect
EndDialog
DrawFocusRect
RemovePropA
CopyRect
RegisterClipboardFormatA
wsprintfW
SetPropA
SetWindowLongA
MapWindowPoints
GetPropA
SetRect
DrawEdge
GetFocus
GetActiveWindow
SetDlgItemTextA
InvalidateRect
CreateWindowExA
EnableWindow
KillTimer
GetAsyncKeyState
PeekMessageA
SetTimer
ShowWindow
InflateRect
DefWindowProcA
GetDC
ReleaseDC
BeginPaint
EndPaint
GetWindowTextA
GetDlgCtrlID
RegisterWindowMessageA
GetDlgItem
LoadIconA
DefDlgProcA
RegisterClassA
LoadAcceleratorsA
SetClassLongA
SetWindowTextA
CharNextA
CharPrevA
MessageBeep
GetWindowLongA
wvsprintfA
MessageBoxA
wsprintfA
OpenClipboard
GetClipboardData
LoadCursorA
CloseClipboard
SetCursor
PostQuitMessage
DestroyWindow
GetClientRect
FillRect
GetSysColor
LoadStringA
ClientToScreen
ScreenToClient
GetWindow
GetKeyState
EnableMenuItem
IsClipboardFormatAvailable
IsWindowEnabled
UpdateWindow
SendMessageA
WinHelpA
IsWindowVisible
SetActiveWindow
PostMessageA
GetSystemMetrics
CreateDialogParamA
GetMessageA
TranslateAcceleratorA
IsDialogMessageA
TranslateMessage
DispatchMessageA
CallWindowProcA
CreateMenu
DestroyMenu
SetWindowPos
RemoveMenu
GetParent
RedrawWindow
GetMenuStringA
InsertMenuA
GetSubMenu

gdi32

SelectPalette
CloseMetaFile
GetTextExtentPointA
SetBkColor
RealizePalette
DeleteObject
SetBrushOrgEx
CreateSolidBrush
ExtTextOutA
SelectObject
GetStockObject
SetTextColor
BitBlt
PatBlt
DeleteDC
CreateBitmap
CreateCompatibleDC
SetMapMode
CreateHatchBrush
DeleteMetaFile
SetWindowExtEx
StretchBlt
CreateCompatibleBitmap
GetDIBits
GetDeviceCaps
SetWindowOrgEx
CreateMetaFileA
GetObjectA

kernel32

VirtualFree
VirtualAlloc
GetCPInfo
GetLastError
GetFileType
GetACP
GetModuleFileNameA
GetStdHandle
GetOEMCP
ExitProcess
GetVersion
GetEnvironmentStrings
UnhandledExceptionFilter
GetModuleHandleA
GetTempFileNameA
lstrcpynA
RtlZeroMemory
MultiByteToWideChar
FreeResource
RtlUnwind
CreateThread
GlobalMemoryStatus
GetLocaleInfoA
GetCommandLineA
lstrlenA
lstrcatA
DeleteFileA
GetFullPathNameA
CreateFileA
CloseHandle
lstrcpyA
GlobalAlloc
GlobalLock
GlobalSize
LoadLibraryA
FreeLibrary
lstrcmpiA
MulDiv
lstrcmpA
GlobalHandle
GlobalUnlock
GlobalFree
GetProcAddress
LockResource
LoadResource
FindResourceA
RtlMoveMemory
WideCharToMultiByte
GlobalReAlloc
GetStartupInfoA
WaitForSingleObject

advapi32

RegCreateKeyExA
RegOpenKeyExA
RegDeleteValueA
RegCloseKey
RegSetValueExA
RegQueryValueExA

comdlg32

GetSaveFileNameA
GetOpenFileNameA

comctl32

PropertySheetA
ord17
ord8

ole32

WriteClassStg
OleNoteObjectVisible
StgCreateDocfile
OleSave
CreateFileMoniker
OleInitialize
OleSetClipboard
OleIsCurrentClipboard
OleFlushClipboard
CoRevokeClassObject
CoRegisterClassObject
CoLockObjectExternal
OleUninitialize
CoCreateInstance
OleBuildVersion
CLSIDFromString
OleDraw
WriteClassStm
CreateStreamOnHGlobal
ReleaseStgMedium
CreateDataAdviseHolder
WriteFmtUserTypeStg
StgOpenStorage
CreateOleAdviseHolder
CoGetMalloc
GetRunningObjectTable
CreateBindCtx
StgCreateDocfileOnILockBytes
CreateILockBytesOnHGlobal
OleCreateMenuDescriptor
OleDestroyMenuDescriptor

msacm32

acmFormatSuggest
acmStreamClose
acmStreamOpen
acmFormatDetailsA
acmFormatTagDetailsA
acmFormatChooseA
acmMetrics
acmStreamSize
acmStreamUnprepareHeader
acmStreamConvert
acmStreamPrepareHeader

Sections

.text
Size: 68KB - Virtual size: 68KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 96KB - Virtual size: 98KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8984288d79e70019270ad748b43dc9fe

Headers

File Characteristics

Imports

shell32

winmm

user32

gdi32

kernel32

advapi32

comdlg32

comctl32

ole32

msacm32

Sections

.text Size: 68KB - Virtual size: 68KB

.rdata Size: 4KB - Virtual size: 2KB

.data Size: 96KB - Virtual size: 98KB

.idata Size: 8KB - Virtual size: 6KB

.rsrc Size: 16KB - Virtual size: 15KB

.text
Size: 68KB - Virtual size: 68KB

.rdata
Size: 4KB - Virtual size: 2KB

.data
Size: 96KB - Virtual size: 98KB

.idata
Size: 8KB - Virtual size: 6KB

.rsrc
Size: 16KB - Virtual size: 15KB