0281a8e7f2dcde18dc3ad9708ae2da94

Sharing

Copy URL Twitter E-mail

General

Target

0281a8e7f2dcde18dc3ad9708ae2da94
Size

90KB
MD5

0281a8e7f2dcde18dc3ad9708ae2da94
SHA1

290f8e5632857784ee2d595b1d0bab1fecd4958f
SHA256

58a7f918f8abbe3372452f3e9f4b9fa71cc83b3f84a2e69f1c995240311f3f25
SHA512

94ab04c4290b904a15e4c08d09cc9d131d1646f03deb3a8df77f745f8925daa49ca79f42c789da678adb83e7d707ee041d810fb2a00f71c304be6388a49a8f4f
SSDEEP

1536:k0SyMi37epJgmhU0QZlV31HbRGaO2gbMPKQmItq+SOuFpkT6AF:AyZ37I+hlVF7RGaO2gbMyktuDkT6Y

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0281a8e7f2dcde18dc3ad9708ae2da94

Files

0281a8e7f2dcde18dc3ad9708ae2da94
.exe windows:4 windows x86 arch:x86

566326e3fd79eae6a11491b6801baaac

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

atol
exit
tolower
memcpy
memmove
time
clock
strlen
sprintf
wcscspn
wcschr
sqrt
calloc
malloc
wcstol
memset
swprintf
rand
_acmdln
srand
mbstowcs

comdlg32

GetOpenFileNameA
FindTextA
GetSaveFileNameA
ChooseColorA

kernel32

CreateEventA
LoadLibraryA
GetCurrentThread
GlobalDeleteAtom
ReadFile
Sleep
GetModuleHandleA
ExitProcess
SizeofResource
GetSystemDefaultLangID
GetTickCount
GlobalAlloc
WaitForSingleObject
LocalReAlloc
LoadLibraryExA
lstrlenA
GetACP
GetFileSize
GetVersion
MulDiv
FindClose
DeleteFileA
WriteFile
lstrcmpA
MoveFileA
GetStringTypeW
LockResource
GlobalFindAtomA
EnumCalendarInfoA
GetThreadLocale
SetLastError
GetLastError
SetErrorMode
GetVersionExA
WideCharToMultiByte
LocalAlloc
ExitThread
GetFileType
SetEndOfFile
HeapAlloc
HeapDestroy
GetStartupInfoA
VirtualAllocEx
lstrcpynA
MoveFileExA
GetCurrentThreadId
SetEvent
HeapFree
GetModuleFileNameA
lstrcmpiA
VirtualAlloc
SetHandleCount
GetFileAttributesA
FindFirstFileA
EnterCriticalSection
GetCPInfo
lstrcatA
GlobalAddAtomA

user32

EndPaint
DefFrameProcA
GetWindow
GetCursor
GetClassInfoA
SetWindowLongA
GetFocus
EnumThreadWindows
GetWindowTextA
SetTimer
IsMenu
GetActiveWindow
GetPropA
ClientToScreen
GetMenuItemID
CallNextHookEx
CheckMenuItem
DrawEdge
CreatePopupMenu
GetDCEx
ShowWindow
GetClipboardData
GetParent
GetMenuStringA
RegisterClassA
GetSysColorBrush
EnableMenuItem
GetMessagePos
IsChild
CharNextA
CharLowerA
DrawIcon
DrawMenuBar
GetSysColor
ShowScrollBar
DrawFrameControl
IsWindowVisible
FindWindowA
DispatchMessageA
DefWindowProcA
CallWindowProcA
BeginDeferWindowPos
EnumChildWindows
GetMenuItemCount
GetCursorPos
SystemParametersInfoA
EnableScrollBar
GetScrollRange
GetForegroundWindow
FillRect
DispatchMessageW
EnumWindows
GetCapture
GetDesktopWindow
SetWindowPos
CreateIcon
FrameRect
GetMenu
GetDC
IsWindowEnabled
TrackPopupMenu
SetWindowTextA
GetLastActivePopup
DefMDIChildProcA
GetMenuItemInfoA
GetScrollInfo
CreateMenu
GetDlgItem
GetSubMenu
CreateWindowExA
MessageBoxA
GetKeyNameTextA
GetIconInfo
GetKeyState
EqualRect
DrawTextA
DrawIconEx
CharToOemA
EndDeferWindowPos
HideCaret

Sections

text
Size: 29KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 52KB - Virtual size: 51KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: 512B - Virtual size: 458B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.init
Size: 1024B - Virtual size: 679B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 571B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

566326e3fd79eae6a11491b6801baaac

Headers

File Characteristics

Imports

msvcrt

comdlg32

kernel32

user32

Sections

text Size: 29KB - Virtual size: 28KB

.idata Size: 52KB - Virtual size: 51KB

.rdata Size: 5KB - Virtual size: 5KB

.bss Size: 512B - Virtual size: 458B

.init Size: 1024B - Virtual size: 679B

.rsrc Size: 1024B - Virtual size: 571B

text
Size: 29KB - Virtual size: 28KB

.idata
Size: 52KB - Virtual size: 51KB

.rdata
Size: 5KB - Virtual size: 5KB

.bss
Size: 512B - Virtual size: 458B

.init
Size: 1024B - Virtual size: 679B

.rsrc
Size: 1024B - Virtual size: 571B