137e8949e9df0f254abea37d03ef4e73

Sharing

Copy URL

Twitter E-mail

General

Target

137e8949e9df0f254abea37d03ef4e73
Size

109KB
MD5

137e8949e9df0f254abea37d03ef4e73
SHA1

2b092efacb74a3f7477dd7d723a16ceffc0992dd
SHA256

070a35d7cbfcd2835d1bb533f32133915cfced702227fc10140459aaff7fd30f
SHA512

85410d71200fe0e12c4a39221f71bf9e27cc1bbe7b62ab89845f381d1392becf2d5e25f8d53d4a442501256cd66df7eb53d8144738314d055105d1854c394966
SSDEEP

3072:SD3Hl5JVSa4GhR+lbTlVd3c6h2o1DNoY:y3Xok+llLQov

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
137e8949e9df0f254abea37d03ef4e73

Files

137e8949e9df0f254abea37d03ef4e73
.exe windows:4 windows x86 arch:x86

9afe34dba538b7c56ec58a1f72c11674

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

oleaut32

SysStringLen

shlwapi

SHQueryInfoKeyA
SHEnumValueA
SHSetValueA
SHStrDupA
SHQueryValueExA
PathIsDirectoryA
SHDeleteValueA
SHGetValueA
PathFileExistsA

version

VerFindFileA
GetFileVersionInfoA
VerInstallFileA

user32

IsRectEmpty
MapVirtualKeyA
GetTopWindow
GetCursorPos
SetParent
GetMenu
GetIconInfo
SetWindowPos
MsgWaitForMultipleObjects
GetScrollRange
IsDialogMessageW
GetKeyNameTextA
CallWindowProcA
GetSubMenu
TranslateMDISysAccel
SetMenu
ReleaseDC
DefWindowProcA
PtInRect
AdjustWindowRectEx
GetWindowTextA
OemToCharA
DrawMenuBar
SetScrollPos
SetForegroundWindow
GetSysColorBrush
GetWindowThreadProcessId
CreateIcon
EnumChildWindows
CreateMenu
ShowWindow
ActivateKeyboardLayout
DestroyIcon
TrackPopupMenu
DefMDIChildProcA
GetWindowDC
GetMenuItemID
CreateWindowExA
MessageBeep
InsertMenuA
GetSysColor
IsWindow
CharNextW
GetKeyboardLayoutList
DrawEdge
SetWindowLongW
GetWindowPlacement
GetMenuItemCount
DestroyWindow
DestroyCursor
DrawIcon
LoadIconA
GetDlgItem
CloseClipboard
LoadStringA
GetFocus
SetWindowPlacement
RegisterWindowMessageA
SetClassLongA
DrawAnimatedRects
CharLowerA
SetWindowTextA
GetMenuStringA
EndPaint
InflateRect
DispatchMessageW
WaitMessage
MessageBoxA
GetWindow
SetClipboardData
GetKeyState
CheckMenuItem
GetForegroundWindow
InsertMenuItemA
CharToOemA
FindWindowA
DrawIconEx
GetClassLongA
wsprintfA
EnumWindows
SendMessageA
GetCursor
PostQuitMessage
GetKeyboardType
IsChild
SetWindowLongA
GetActiveWindow
IsWindowEnabled
EnableScrollBar
PeekMessageA
InvalidateRect
GetMessagePos
ClientToScreen
SetScrollRange
DrawFrameControl
DeleteMenu
GetMenuItemInfoA
SendMessageW
GetKeyboardState
IsDialogMessageA
RemoveMenu
ReleaseCapture
LoadBitmapA
SetPropA
PeekMessageW
EnableWindow
GetKeyboardLayoutNameA
GetSystemMetrics
BeginPaint
GetWindowRect
LoadCursorA
DefFrameProcA
SetCursor
GetCapture
GetClipboardData
GetWindowLongW
EnumThreadWindows
OffsetRect
SetRect
FrameRect
ScrollWindow
SystemParametersInfoA
MapWindowPoints
SetCapture
ScreenToClient
GetScrollPos
EqualRect
CallNextHookEx
OpenClipboard
GetDC
DestroyMenu
SetScrollInfo
ShowScrollBar
SetFocus
SetActiveWindow
UnhookWindowsHookEx
SetTimer
ChildWindowFromPoint
CharUpperBuffA
GetKeyboardLayout
KillTimer
GetClassNameA
ShowOwnedPopups
MoveWindow
CreatePopupMenu
SetMenuItemInfoA
UpdateWindow
UnregisterClassA
GetClassInfoA
GetDCEx
GetScrollInfo
EmptyClipboard
IsZoomed
DrawTextA
WindowFromPoint
GetDesktopWindow
GetSystemMenu
RegisterClipboardFormatA
SetWindowsHookExA
PostMessageA
FillRect
GetLastActivePopup
RegisterClassA
GetParent
DispatchMessageA
EnableMenuItem
RemovePropA
GetPropA
IsWindowVisible
GetClientRect
GetWindowLongA
CharNextA
LoadKeyboardLayoutA
GetMenuState
IsIconic
TranslateMessage
IntersectRect

kernel32

GetOEMCP
VirtualAllocEx
EnterCriticalSection
LoadResource
GetProcAddress
lstrcpynA
GetVersionExA
GlobalAlloc
GetCommandLineA
SizeofResource
LoadLibraryA
ExitProcess
GetModuleHandleA
CloseHandle
lstrlenA

shell32

SHGetFolderPathA
SHGetSpecialFolderLocation
Shell_NotifyIconA
SHFileOperationA
SHGetDesktopFolder

gdi32

GetDIBColorTable
SelectPalette
SetPixel
GetBitmapBits
GetCurrentPositionEx
GetClipBox
SetBkMode

advapi32

RegEnumKeyExA
RegDeleteValueA
RegEnumKeyA

Sections

CODE
Size: 31KB - Virtual size: 31KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 69KB - Virtual size: 69KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 512B - Virtual size: 463B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9afe34dba538b7c56ec58a1f72c11674

Headers

File Characteristics

Imports

oleaut32

shlwapi

version

user32

kernel32

shell32

gdi32

advapi32

Sections

CODE Size: 31KB - Virtual size: 31KB

.rdata Size: 6KB - Virtual size: 6KB

.data Size: 69KB - Virtual size: 69KB

.edata Size: 512B - Virtual size: 463B

CODE
Size: 31KB - Virtual size: 31KB

.rdata
Size: 6KB - Virtual size: 6KB

.data
Size: 69KB - Virtual size: 69KB

.edata
Size: 512B - Virtual size: 463B