0ed77c64afc3414e94291a8c0f1a816f

Sharing

Copy URL

Twitter E-mail

General

Target

0ed77c64afc3414e94291a8c0f1a816f
Size

827KB
MD5

0ed77c64afc3414e94291a8c0f1a816f
SHA1

2b359c72cb24b7daa28a1d30ff45d5f84ecfe53a
SHA256

54a50e0f177f7ac2753ee30ee39f5bab0146b556ec5593ef05c3a3f2371da3cf
SHA512

ca4384e3152ac4232baf4e4b7ce47d6efc90e34440e452643f411880dd7c3abfa2bc61f88ce79618e9859d509261d485baa885cb3abc1a20918eed95faeb1fbb
SSDEEP

12288:CPUB1kkNi3xVFB5stCEN+YtqGlJiGwHbqZZVPOJOy/hUHC7Fx1jbAtf0z75o9NWc:fEk0TFENbr22hC7/OHEx16k7cNW9sdP

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0ed77c64afc3414e94291a8c0f1a816f

Files

0ed77c64afc3414e94291a8c0f1a816f
.exe windows:5 windows x86 arch:x86

803a77cc61e748aa56ba201513c33752

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
GetCurrentDirectoryA
VirtualProtect
GetConsoleOutputCP

user32

GetMessagePos
GrayStringW
GetNextDlgTabItem
InvalidateRgn
GetDlgItem
IsDialogMessageW
SendMessageW
GetCursorPos
GetMessageTime
SetWindowTextW
AppendMenuW
CreateWindowExW
GetWindowThreadProcessId
UnhookWindowsHookEx
InvalidateRect
AllowSetForegroundWindow
GetWindowInfo
PostThreadMessageW
SetActiveWindow
InflateRect
SetWindowPlacement
GetFocus
CharUpperW
GetClassNameW
UpdateWindow
GetForegroundWindow
BeginPaint
SetFocus
SetCursorPos
GetMessageW
RegisterClipboardFormatW
GetClassLongW
MessageBoxW
TrackPopupMenu
MapWindowPoints
DefWindowProcW
EndPaint
CheckMenuItem
RedrawWindow
GetSysColor
GetClassInfoW
GetSubMenu
IsChild
GetActiveWindow
GetNextDlgGroupItem
OffsetRect
EndDialog
GetClassInfoExW
MapDialogRect
PeekMessageW
KillTimer
GetMenu

gdi32

CreateFontIndirectW
GetTextColor
SaveDC
MoveToEx
GetTextExtentPoint32W
PtVisible
GetMapMode
SetMapMode
SetPixel
Escape
GetDeviceCaps
DeleteObject
CreatePen
CreateRectRgnIndirect
CreateSolidBrush
RestoreDC
ScaleViewportExtEx
SetViewportOrgEx
DPtoLP
GetBkColor
ExtSelectClipRgn
RectVisible
PatBlt
SetBkMode
CreateBitmap
Polyline
BitBlt
CreateBitmapIndirect
TextOutW
CreateCompatibleBitmap
ExcludeClipRect
GetRgnBox
GetClipBox
GetViewportExtEx
StretchDIBits
SelectPalette
GetWindowExtEx
SetBkColor
ScaleWindowExtEx
LineTo
SetStretchBltMode
SetWindowExtEx
SelectObject
GetPixel
OffsetViewportOrgEx
GetStockObject
ExtTextOutW
CreateCompatibleDC
SetViewportExtEx
StretchBlt
GetObjectW
SetTextColor
DeleteDC

comdlg32

GetFileTitleW

advapi32

RegDeleteValueW
RegQueryValueW
RegEnumKeyW
StartServiceW
RegQueryValueExW
RegCreateKeyExW
RegOpenKeyW
RegOpenKeyExW
RegCloseKey
RegSetValueExW
LookupPrivilegeValueW
RegEnumKeyExW
AdjustTokenPrivileges
OpenProcessToken
RegNotifyChangeKeyValue
CloseServiceHandle
OpenServiceW
RegCreateKeyW
OpenSCManagerW
RegDeleteKeyW

shell32

Shell_NotifyIconW
ShellExecuteW
SHGetFolderPathW

ole32

CoTaskMemAlloc
OleIsCurrentClipboard
CreateStreamOnHGlobal
CoRegisterMessageFilter
OleUninitialize
CoUninitialize
StgOpenStorageOnILockBytes
CoGetClassObject
CLSIDFromProgID
CoInitialize
OleInitialize
CoTaskMemFree
CoFreeUnusedLibraries
CLSIDFromString
CoRevokeClassObject
OleFlushClipboard
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
CoCreateInstance
PropVariantClear

shlwapi

PathFindFileNameW
PathIsUNCW
PathFindExtensionW
PathStripToRootW

winmm

PlaySoundW
waveInStart
waveInClose
waveInGetNumDevs
waveInStop
waveInReset
waveInAddBuffer
waveInUnprepareHeader
waveInPrepareHeader
waveInOpen
waveInGetDevCapsW

rpcrt4

UuidCreate

setupapi

SetupDiGetClassDevsW
SetupDiEnumDeviceInterfaces
SetupDiGetDeviceInterfaceDetailW
SetupDiDestroyDeviceInfoList

gdiplus

GdipDrawImageRectRect
GdipFlush
GdipMeasureString
GdipCloneBrush
GdipCreateFontFamilyFromName
GdipFillRectangleI
GdipDrawString
GdipCreateBitmapFromScan0
GdipDisposeImage
GdipAlloc
GdipDrawImagePointRectI
GdipDeleteFontFamily
GdipDeleteGraphics
GdipDrawImageI
GdipCreateBitmapFromStream
GdipCreateHBITMAPFromBitmap
GdipDrawImageRect
GdipDeleteFont
GdiplusStartup
GdipDeleteBrush
GdipCreateBitmapFromHBITMAP
GdipDrawImageRectI
GdipCreateSolidFill
GdipCreateFont
GdipCloneImage
GdipSetTextRenderingHint
GdipCreateBitmapFromGraphics
GdipCreateFromHDC
GdipFree
GdipImageRotateFlip
GdipGetImageHeight
GdipGetImageGraphicsContext
GdipGetGenericFontFamilySansSerif
GdipGetFontSize
GdipGetImageWidth
GdipGetImageBounds
GdipCreateBitmapFromResource
GdipFillRectangle

msvcrt

exit

oleacc

ObjectFromLresult

esent

JetMove
JetTerm

Sections

.text
Size: 214KB - Virtual size: 213KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.gg
Size: - Virtual size: 5.4MB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 832B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ss
Size: 139KB - Virtual size: 138KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.dd
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.ff
Size: 139KB - Virtual size: 138KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.hh
Size: 285KB - Virtual size: 285KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tls
Size: 512B - Virtual size: 57B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 33KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

803a77cc61e748aa56ba201513c33752

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

shell32

ole32

shlwapi

winmm

rpcrt4

setupapi

gdiplus

msvcrt

oleacc

esent

Sections

.text Size: 214KB - Virtual size: 213KB

.gg Size: - Virtual size: 5.4MB

.rdata Size: 6KB - Virtual size: 6KB

.data Size: 512B - Virtual size: 832B

.ss Size: 139KB - Virtual size: 138KB

.dd Size: 1KB - Virtual size: 1KB

.ff Size: 139KB - Virtual size: 138KB

.hh Size: 285KB - Virtual size: 285KB

.tls Size: 512B - Virtual size: 57B

.rsrc Size: 33KB - Virtual size: 32KB

.reloc Size: 6KB - Virtual size: 6KB

.text
Size: 214KB - Virtual size: 213KB

.gg
Size: - Virtual size: 5.4MB

.rdata
Size: 6KB - Virtual size: 6KB

.data
Size: 512B - Virtual size: 832B

.ss
Size: 139KB - Virtual size: 138KB

.dd
Size: 1KB - Virtual size: 1KB

.ff
Size: 139KB - Virtual size: 138KB

.hh
Size: 285KB - Virtual size: 285KB

.tls
Size: 512B - Virtual size: 57B

.rsrc
Size: 33KB - Virtual size: 32KB

.reloc
Size: 6KB - Virtual size: 6KB