019b85bb78f7022227e3a7c94762179d

Sharing

Copy URL Twitter E-mail

General

Target

019b85bb78f7022227e3a7c94762179d
Size

97KB
MD5

019b85bb78f7022227e3a7c94762179d
SHA1

0e573b937892916cb2683ac78e9cf83c055c483b
SHA256

8d638514d3305cec859b2915b0269a220d6652e30a7e3cdf4753e9f5eb55bfd3
SHA512

ea956b0474cba3f0ffc6abf8134d451437fdc58f56ab7f3e6c47905b10ae53b8506415b1f047ad0f584cb27c5a7f7f48379381da37d9c2763223d254183a685e
SSDEEP

1536:jB6h0EWUSH+hH4EeXHEHhROgek5npbdBHHUvrB34w+szKoLjkNQ1AFVxD7yjmo+q:u0EWjkm3EBFecnXBmUsz3s+A9D7y7+q

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
019b85bb78f7022227e3a7c94762179d

Files

019b85bb78f7022227e3a7c94762179d
.exe windows:4 windows x86 arch:x86

1786fe491675543c8033375934cc347a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

version

VerQueryValueA

user32

GetKeyState
GetWindow
SetWindowPos
EndDeferWindowPos
DefMDIChildProcA
EnumChildWindows
GetDesktopWindow
GetMenu
CallWindowProcA
CreateIcon
CharToOemA
RegisterClassA
EnableScrollBar
GetCursor
ShowScrollBar
SystemParametersInfoA
IsWindowEnabled
GetScrollRange
DeferWindowPos
GetMessagePos
DefWindowProcA
DrawFrameControl
ShowWindow
EnableWindow
DrawEdge
GetClipboardData
CreateWindowExA
CharLowerBuffA
TrackPopupMenu
GetSysColor
DispatchMessageW
CreatePopupMenu
FrameRect
GetMenuState
GetMenuItemCount
CallNextHookEx
GetLastActivePopup
GetIconInfo
DefFrameProcA
CreateMenu
IsWindowVisible
HideCaret
GetSubMenu
MessageBoxA
DrawIcon
GetMenuItemInfoA
DrawIconEx
GetDC
DrawMenuBar
CheckMenuItem
CharNextA
SetWindowTextA
GetParent
EqualRect
GetDCEx
GetCursorPos
FillRect
GetForegroundWindow
SetCursor
GetScrollInfo
GetWindowTextA
GetClientRect
EndPaint
GetMenuItemID
IsDialogMessageA
IsMenu
SetWindowLongA
EnumThreadWindows
IsChild
GetKeyNameTextA
BeginDeferWindowPos
GetScrollPos
GetClassInfoA
GetActiveWindow
GetPropA
DrawTextA
EnableMenuItem
GetCapture
GetClassLongA
ClientToScreen
FindWindowA
DispatchMessageA
BeginPaint
SetTimer
EnumWindows
GetFocus

comctl32

ImageList_Create

msvcrt

atol
calloc
memset
clock
wcschr
_acmdln
memmove
wcstol
rand
tolower
exit
sqrt
mbstowcs
wcsncmp
sprintf
time
memcpy
srand
malloc
wcscspn
swprintf

kernel32

GetCommandLineA
GetDateFormatA
EnumCalendarInfoA
CreateThread
DeleteFileA
SetThreadLocale
lstrcmpA
GetLocalTime
MoveFileExA
GetLastError
GlobalAddAtomA
GetACP
FreeLibrary
LockResource
GetCurrentThread
GetModuleHandleA
GetModuleFileNameA
Sleep
SetHandleCount
SetFilePointer
GetVersion
ExitThread
VirtualQuery
SetEvent
WaitForSingleObject
GetLocaleInfoA
FindFirstFileA
lstrlenA
SetEndOfFile
GetStdHandle
LoadLibraryA
VirtualFree
GetFullPathNameA
FindResourceA
InitializeCriticalSection
lstrcatA
GlobalAlloc
GetVersionExA
GetDiskFreeSpaceA
GetUserDefaultLCID
LocalReAlloc
SizeofResource
VirtualAllocEx

Sections

INIT
Size: 36KB - Virtual size: 35KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.tls
Size: 51KB - Virtual size: 51KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

BSS
Size: 512B - Virtual size: 243B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 571B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1786fe491675543c8033375934cc347a

Headers

File Characteristics

Imports

version

user32

comctl32

msvcrt

kernel32

Sections

INIT Size: 36KB - Virtual size: 35KB

.tls Size: 51KB - Virtual size: 51KB

.bss Size: 7KB - Virtual size: 7KB

BSS Size: 512B - Virtual size: 243B

.rsrc Size: 1024B - Virtual size: 571B

INIT
Size: 36KB - Virtual size: 35KB

.tls
Size: 51KB - Virtual size: 51KB

.bss
Size: 7KB - Virtual size: 7KB

BSS
Size: 512B - Virtual size: 243B

.rsrc
Size: 1024B - Virtual size: 571B