0ed22c588ddb88279edeac8a50da4a15

Sharing

Copy URL

Twitter E-mail

General

Target

0ed22c588ddb88279edeac8a50da4a15
Size

185KB
MD5

0ed22c588ddb88279edeac8a50da4a15
SHA1

c57c0b20e6a7aa6e3105fa7c35ef92fd2b22e9ff
SHA256

5d631ea52b2b574f882753ab9196ea65210a46d955f34d8605a20d60be74b503
SHA512

1fedffbce39030cba933979069d4a1d49d843bd06404ddbd3feb4199386b3222f13808eff74ce452dfd0ad243a3a323ac88ce7f3ef73828d53dd6f0b1c648943
SSDEEP

3072:KlxGfCZG5E5JYma4CKF/BmJcQxqzKt4SoBycmru50cYtolczmHmmsr9MlnULbZ:C05gJa4CKqYKtHWyczmcKBMY9eULN

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0ed22c588ddb88279edeac8a50da4a15

Files

0ed22c588ddb88279edeac8a50da4a15
.exe windows:5 windows x86 arch:x86

07c234111abe4c89708cf6aeac32809b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

ImageList_SetIconSize
ImageList_GetImageCount
ImageList_Remove
ImageList_ReplaceIcon
PropertySheetW
CreateStatusWindowW
ImageList_Create
ImageList_GetIconSize
CreatePropertySheetPageW

msvcrt

setvbuf
vswprintf
wcsncmp
localtime
_controlfp
gets
__set_app_type
atoi
strncmp
vsprintf
getenv
fgetc
__p__fmode
fgets
towlower
iswspace
iswctype
iswdigit
__p__commode
swscanf
_amsg_exit
wcscoll
isxdigit
realloc
putc
wcstombs
_initterm
bsearch
sprintf
printf
towupper
isdigit
perror
mbtowc
_ismbblead
strtoul
ftell
_XcptFilter
wcschr
isprint
wcstod
iswxdigit
fwrite
isspace
fflush
_exit
_cexit
strtol
wcsncpy
malloc
wcstol
toupper
wcsstr
wcscat
__setusermatherr
clearerr
atol
wcstok
rand
__getmainargs

comdlg32

GetOpenFileNameW
FindTextW
GetSaveFileNameW
GetSaveFileNameA
ChooseColorW

user32

ShowCursor
RegisterClassW
InternalGetWindowText
MessageBoxA
SetWindowPlacement
IsWindowUnicode
LoadIconW
CreateDialogParamW
UpdateWindow
wvsprintfA
IsWindowVisible
SetDlgItemTextW
OemToCharBuffA
GetScrollInfo
SetWindowLongW
ChildWindowFromPointEx
GetMenuItemInfoW
InsertMenuW
IsCharAlphaW
ScrollWindow
DrawTextExW
IsCharUpperA
GetKeyboardLayout
OpenIcon
EnableMenuItem
LockWindowUpdate
CharPrevA
RemoveMenu
SetLastErrorEx
GetDlgItemTextA
ActivateKeyboardLayout
LoadBitmapW
SendMessageA
FindWindowW
DefDlgProcW
GetKeyboardType
SetWindowTextW
EnumChildWindows
CharToOemW
SetRect
DefDlgProcA
DeferWindowPos
wsprintfA
SetFocus
OemToCharA
mouse_event
GetMenuItemRect
IsZoomed
IsDlgButtonChecked
FindWindowA
PostMessageW
MapWindowPoints
GetKeyboardLayoutNameW
SendDlgItemMessageA
GrayStringW
CallWindowProcA
DrawMenuBar
ShowOwnedPopups
EnableScrollBar
GetScrollPos
IsDialogMessageA
SetPropW
GetDlgItemInt
ShowScrollBar
CharUpperA
GetScrollRange
GetActiveWindow
CharLowerW
LoadStringA
CharNextW
DestroyMenu
TrackPopupMenu
GetWindowPlacement
SwapMouseButton
AdjustWindowRect
DrawTextA
DrawEdge
ScreenToClient
IsWindow
LoadStringW
keybd_event
ReleaseDC
wsprintfW
UnionRect
InflateRect
GetDesktopWindow
SendDlgItemMessageW
CreateWindowExW
GetClassInfoA
IsCharAlphaA
AttachThreadInput
GetDlgItemTextW
MoveWindow
CreateDialogIndirectParamW
GetPropW
FillRect
InvalidateRect
ValidateRect
CreatePopupMenu
EndDialog
MapDialogRect
GetIconInfo
TranslateAcceleratorW
ShowWindow
ClientToScreen
SetDlgItemTextA
CascadeWindows
GetClassInfoW
GetMenuStringA
GetWindowDC
MessageBoxW
MapVirtualKeyA
GetMessageA
GetKeyboardLayoutList
GetSubMenu
CheckDlgButton
DestroyWindow
SetWindowTextA
RemovePropW
BeginPaint
IsChild
SendMessageTimeoutW
SetUserObjectInformationW
GetDialogBaseUnits
WaitMessage
GetDC
CreateWindowExA
LoadBitmapA
DrawIcon
LoadAcceleratorsW
PostThreadMessageA
MonitorFromRect
DrawFrameControl
LoadIconA
LoadCursorW
CreateIconIndirect
IsWindowEnabled
GetWindowTextLengthW
GetClipCursor
FindWindowExA
GetMenuCheckMarkDimensions
SetScrollInfo
GetDCEx
DrawFocusRect
LoadCursorA
EndPaint
GetClassLongA
SystemParametersInfoW
AppendMenuW
TranslateAcceleratorA
OpenDesktopW
GetCaretPos
SetForegroundWindow
IsIconic
PtInRect
ArrangeIconicWindows
GetUserObjectInformationA
HiliteMenuItem
FindWindowExW
VkKeyScanW
DrawStateW
UnloadKeyboardLayout

kernel32

FormatMessageA
TlsSetValue
GetTimeFormatA
GetCommConfig
FindNextFileW
GetTempFileNameA
SizeofResource
OpenFile
SetFileApisToOEM
GlobalAddAtomW
GetModuleFileNameA
GetComputerNameExW
LCMapStringA
GetDateFormatA
GetFullPathNameA
CallNamedPipeW
SetHandleInformation
GetLastError
GetAtomNameA
GetDateFormatW
ResumeThread
CreateSemaphoreA
DisconnectNamedPipe
GetCurrentThread
TlsGetValue
GetVersionExW
DeleteCriticalSection
LeaveCriticalSection
GetStartupInfoA
HeapAlloc
CreateMutexW
DeleteFileA
CancelWaitableTimer
RegisterWaitForSingleObject
QueryPerformanceCounter
FlushFileBuffers
SetThreadContext
GetStdHandle
GetFileAttributesExW
GetTempPathA
GetOverlappedResult
VerSetConditionMask
GetCurrentDirectoryW
HeapFree
SuspendThread
FindResourceExW
GetTempPathW
lstrlenW
GetCompressedFileSizeW
EnumResourceTypesA
MapViewOfFile
CreateRemoteThread
SetNamedPipeHandleState
SetThreadExecutionState
GetOEMCP
WaitCommEvent
GetThreadPriority
CopyFileA
LocalAlloc
GetModuleHandleA
GetSystemTimeAsFileTime
GlobalReAlloc
SetupComm
SetWaitableTimer
GetACP
AddAtomW
CompareStringA
InitializeCriticalSection
GetModuleHandleW
ExitThread
GetBinaryTypeA
VirtualAlloc
WriteFile
IsDBCSLeadByte
GlobalCompact

gdi32

PtVisible
CreateEllipticRgnIndirect
SetViewportExtEx
AddFontResourceW
StartDocW
GetDeviceCaps
ResizePalette
GetPaletteEntries
SetLayout
GetStockObject
TextOutW
GetTextExtentPoint32A
GetBitmapBits
OffsetViewportOrgEx
GetWindowOrgEx
GetDIBColorTable
CreateCompatibleDC
CreateCompatibleBitmap
CreateHatchBrush
DeleteObject
PolyBezier
CreateHalftonePalette
SetROP2
CreateFontIndirectW
GetBkMode
SetBkMode
SetBitmapDimensionEx
IntersectClipRect
CreateBitmapIndirect
LPtoDP
Polygon
SetAbortProc
EnumFontFamiliesW
CreateFontIndirectA
SetDIBColorTable
TranslateCharsetInfo
SetDIBitsToDevice
TextOutA
SetStretchBltMode
ExtTextOutW
ExcludeClipRect
GetTextMetricsW
FillRgn
GetDIBits
GetROP2
GetCurrentObject
GetSystemPaletteUse
RemoveFontResourceW
GetViewportOrgEx
SetBkColor
ExtTextOutA
GetTextExtentPointW
ExtFloodFill
SelectObject
GetRgnBox
GetLayout
GetTextExtentPoint32W
SetTextAlign
LineTo
CreateDCW
StartPage
SetViewportOrgEx
PatBlt
GetCharWidth32W
CreateDIBSection

Exports

Exports

?InvalidateValueW@@IJIDPADPAJ@X

Sections

.text
Size: 117KB - Virtual size: 117KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.iat
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 512B - Virtual size: 104B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.virt
Size: - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 54KB - Virtual size: 53KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

07c234111abe4c89708cf6aeac32809b

Headers

File Characteristics

Imports

comctl32

msvcrt

comdlg32

user32

kernel32

gdi32

Exports

Exports

Sections

.text Size: 117KB - Virtual size: 117KB

.iat Size: 2KB - Virtual size: 1KB

.edata Size: 512B - Virtual size: 104B

.data Size: 10KB - Virtual size: 9KB

.virt Size: - Virtual size: 15KB

.rsrc Size: 54KB - Virtual size: 53KB

.reloc Size: 2KB - Virtual size: 2KB

.text
Size: 117KB - Virtual size: 117KB

.iat
Size: 2KB - Virtual size: 1KB

.edata
Size: 512B - Virtual size: 104B

.data
Size: 10KB - Virtual size: 9KB

.virt
Size: - Virtual size: 15KB

.rsrc
Size: 54KB - Virtual size: 53KB

.reloc
Size: 2KB - Virtual size: 2KB