045bf90b3708399550f8d067a7cfa03c

Sharing

Copy URL Twitter E-mail

General

Target

045bf90b3708399550f8d067a7cfa03c
Size

278KB
MD5

045bf90b3708399550f8d067a7cfa03c
SHA1

4aa3457fbf60c01ab6d2d792c64a84455b62aa50
SHA256

4fcb4ebc76f6022aca19b6999311574dc7d37846f381cfd86d958ed80c012d06
SHA512

c4d268a8f8123f83ffe744d261bc6a81e5aed31136fd1b2ed2e895f4f35d80ebf849ce6ed0389f84f3348549e4755a023134492a8d0803eb11da7e0b01cbc519
SSDEEP

6144:vBvcr0sIt61v/rWDICgEcrcqmNaU2TSuEjklm:vBs0sI+/6k1A46c

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
045bf90b3708399550f8d067a7cfa03c

Files

045bf90b3708399550f8d067a7cfa03c
.exe windows:4 windows x86 arch:x86

6e1a892f737a0fffd6494c1fe87f9665

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetActiveWindow
DefWindowProcW
AttachThreadInput
CloseClipboard
KillTimer
GetMonitorInfoW
SendMessageW
ShowWindow
SwitchToThisWindow
FlashWindow
FindWindowW
SetTimer
SetWindowLongW
ClientToScreen
TrackPopupMenuEx
EmptyClipboard
SetClipboardData
PostMessageW
OpenClipboard
GetWindowThreadProcessId
IsWindow
GetSystemMetrics
SetForegroundWindow
SetWindowPos
GetWindowLongW
SetWindowTextW
GetDesktopWindow
GetSystemMenu
MonitorFromPoint
IsIconic
GetForegroundWindow
CharNextW

ole32

CoTaskMemFree
CoCreateGuid
CoTaskMemAlloc
IIDFromString
CoCreateInstance
CoTaskMemRealloc

comdlg32

GetOpenFileNameW
GetSaveFileNameW

kernel32

GetSystemTime
SystemTimeToFileTime
GetTimeFormatW
LocalFree
lstrlenW
CompareStringW
FindResourceExW
CloseHandle
RaiseException
LeaveCriticalSection
SizeofResource
FindResourceW
GetNumberFormatW
lstrcmpiW
UnhandledExceptionFilter
HeapFree
GlobalAlloc
FileTimeToSystemTime
DisableThreadLibraryCalls
GlobalUnlock
DeleteCriticalSection
HeapSize
SetUnhandledExceptionFilter
HeapDestroy
HeapReAlloc
LoadResource
lstrlenA
CreateFileW
ReadFile
IsDebuggerPresent
LockResource
HeapAlloc
LoadLibraryExW
WideCharToMultiByte
GlobalLock
FormatMessageW
GetFileSize
FreeLibrary
LocalAlloc
GetSystemTimeAsFileTime
GetProcessHeap
EnterCriticalSection
WaitForSingleObject
GetModuleHandleW
GetComputerNameW
GetCurrentThreadId
GetDateFormatW
OutputDebugStringW
IsValidCodePage
VirtualAlloc
GetModuleHandleA

oleaut32

VarUI4FromStr

dbghelp

ImageRvaToSection
SymGetLineFromAddr64
SymGetTypeInfo
SymGetTypeFromName
SymLoadModuleEx
ExtensionApiVersion
dh
SymEnumerateSymbolsW
ImagehlpApiVersionEx
SymEnumerateSymbolsW64
SymFunctionTableAccess
SymGetSymFromName
srcfiles
SymRegisterFunctionEntryCallback64

dinput8

DllGetClassObject
DllCanUnloadNow

Sections

.text
Size: 94KB - Virtual size: 94KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.RpkK
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.OCFkp
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.dOiY
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 58KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 132KB - Virtual size: 131KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.mndDuy
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.zYTQZ
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 17KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.THYM
Size: 512B - Virtual size: 341B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ARfZWB
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ucLTw
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.gRzX
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6e1a892f737a0fffd6494c1fe87f9665

Headers

File Characteristics

Imports

user32

ole32

comdlg32

kernel32

oleaut32

dbghelp

dinput8

Sections

.text Size: 94KB - Virtual size: 94KB

.RpkK Size: 5KB - Virtual size: 4KB

.OCFkp Size: 5KB - Virtual size: 4KB

.dOiY Size: 4KB - Virtual size: 4KB

.data Size: 8KB - Virtual size: 58KB

.rdata Size: 132KB - Virtual size: 131KB

.mndDuy Size: 3KB - Virtual size: 2KB

.zYTQZ Size: 2KB - Virtual size: 1KB

.rsrc Size: 17KB - Virtual size: 17KB

.THYM Size: 512B - Virtual size: 341B

.ARfZWB Size: 2KB - Virtual size: 1KB

.ucLTw Size: 1KB - Virtual size: 1KB

.gRzX Size: 1KB - Virtual size: 1KB

.text
Size: 94KB - Virtual size: 94KB

.RpkK
Size: 5KB - Virtual size: 4KB

.OCFkp
Size: 5KB - Virtual size: 4KB

.dOiY
Size: 4KB - Virtual size: 4KB

.data
Size: 8KB - Virtual size: 58KB

.rdata
Size: 132KB - Virtual size: 131KB

.mndDuy
Size: 3KB - Virtual size: 2KB

.zYTQZ
Size: 2KB - Virtual size: 1KB

.rsrc
Size: 17KB - Virtual size: 17KB

.THYM
Size: 512B - Virtual size: 341B

.ARfZWB
Size: 2KB - Virtual size: 1KB

.ucLTw
Size: 1KB - Virtual size: 1KB

.gRzX
Size: 1KB - Virtual size: 1KB