17290b685c65d48aa8cd3d35690888ee

Sharing

Copy URL Twitter E-mail

General

Target

17290b685c65d48aa8cd3d35690888ee
Size

142KB
MD5

17290b685c65d48aa8cd3d35690888ee
SHA1

2977b86f53178519f21888938abd20f9a0a07bad
SHA256

662182b535f8e31a85bf80f523a0599cf91f8ede31cded277823e3912b7f2283
SHA512

f5efe74a67cd39e2f65e0d39ee77900c07e06cc93f3d8e461ffcf2c73e9a27de5714196a8dedd810f2a87c1d37f28c8249241e1bfabce57ba5d2f3773a5b960a
SSDEEP

3072:TfqXOzP/oVSAIZsrz5fipQt3izOgyoVKnUG6BRCWCnK6IFAURT0pRcuxks:Tf1GSANrlqpQ5gvVayDC1SFAaT0plxks

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
17290b685c65d48aa8cd3d35690888ee

Files

17290b685c65d48aa8cd3d35690888ee
.exe windows:5 windows x86 arch:x86

2e5e96b06debe3cb6434ccc021578e90

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

comdlg32

PageSetupDlgW
GetOpenFileNameA

shlwapi

StrCpyNW
StrChrNW

user32

InflateRect
CharUpperW
SetForegroundWindow
CreateWindowExW
GetDoubleClickTime
SetSysColors
LockWindowUpdate
OemToCharBuffA
IsDialogMessageA
DeferWindowPos
AllowSetForegroundWindow
MoveWindow
GetDCEx
GetScrollPos
SetWindowPos
GetWindowLongA
DrawAnimatedRects
MessageBoxA
GetClassInfoA
SetActiveWindow
GetFocus
SetCursor
DrawTextW
CharNextExA
MessageBoxW
CharToOemBuffA
IsWindowVisible
CharNextA

kernel32

FindResourceExW
GetACP
SetCommBreak
GetProcessHeap
HeapAlloc
GetSystemDirectoryW
lstrlenW
GetModuleHandleW
EnterCriticalSection
RegisterWaitForSingleObject
GetCommTimeouts
GetTickCount
GetAtomNameA
FindCloseChangeNotification
EnumResourceNamesA
GetCommConfig
TransactNamedPipe
HeapFree
GetUserDefaultLCID

gdi32

AddFontResourceW
CreateCompatibleBitmap
GetTextExtentPointW
GetRgnBox
PtVisible
GetBkMode
Escape
CreateRectRgnIndirect
SelectClipRgn
GetTextExtentPointA
CreateHalftonePalette
Polyline
EnumFontFamiliesW

Exports

Exports

?DufiluIOQF67uiofYIFYfUFyf@@YGKEPA_WG@Z

Sections

.text
Size: 68KB - Virtual size: 67KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 43KB - Virtual size: 43KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.mdata
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 22KB - Virtual size: 126KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2e5e96b06debe3cb6434ccc021578e90

Headers

File Characteristics

Imports

comdlg32

shlwapi

user32

kernel32

gdi32

Exports

Exports

Sections

.text Size: 68KB - Virtual size: 67KB

.rdata Size: 43KB - Virtual size: 43KB

.mdata Size: 12KB - Virtual size: 11KB

.data Size: 22KB - Virtual size: 126KB

.rsrc Size: 512B - Virtual size: 16B

.reloc Size: 1KB - Virtual size: 1KB

.text
Size: 68KB - Virtual size: 67KB

.rdata
Size: 43KB - Virtual size: 43KB

.mdata
Size: 12KB - Virtual size: 11KB

.data
Size: 22KB - Virtual size: 126KB

.rsrc
Size: 512B - Virtual size: 16B

.reloc
Size: 1KB - Virtual size: 1KB