112fdbe0e0d3f8b5109fd9c3fe6df1a1

Sharing

Copy URL Twitter E-mail

General

Target

112fdbe0e0d3f8b5109fd9c3fe6df1a1
Size

90KB
MD5

112fdbe0e0d3f8b5109fd9c3fe6df1a1
SHA1

6a6e5c35aa32b106c9b32ff24ce8aee6921ace96
SHA256

768ef81ceca7421d3796d0ebec0a00dd9956ed6343968e57e2d6b0398a991b51
SHA512

58a4572ca3cdd8e69ff530b7b10fd703e232d7679e43c99e6ccdfc9912d32ed31f4c73152d82345a7ce409fb052fe4072c10800dc3fcd64ee27d5b999ae7da04
SSDEEP

1536:k0SyMi37epJgm8U0QZlV31HbRGaO2gbMPKQmItq+SOuFpkT6AF:AyZ37IJhlVF7RGaO2gbMyktuDkT6Y

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
112fdbe0e0d3f8b5109fd9c3fe6df1a1

Files

112fdbe0e0d3f8b5109fd9c3fe6df1a1
.exe windows:4 windows x86 arch:x86

566326e3fd79eae6a11491b6801baaac

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

atol
exit
tolower
memcpy
memmove
time
clock
strlen
sprintf
wcscspn
wcschr
sqrt
calloc
malloc
wcstol
memset
swprintf
rand
_acmdln
srand
mbstowcs

comdlg32

GetOpenFileNameA
FindTextA
GetSaveFileNameA
ChooseColorA

kernel32

CreateEventA
LoadLibraryA
GetCurrentThread
GlobalDeleteAtom
ReadFile
Sleep
GetModuleHandleA
ExitProcess
SizeofResource
GetSystemDefaultLangID
GetTickCount
GlobalAlloc
WaitForSingleObject
LocalReAlloc
LoadLibraryExA
lstrlenA
GetACP
GetFileSize
GetVersion
MulDiv
FindClose
DeleteFileA
WriteFile
lstrcmpA
MoveFileA
GetStringTypeW
LockResource
GlobalFindAtomA
EnumCalendarInfoA
GetThreadLocale
SetLastError
GetLastError
SetErrorMode
GetVersionExA
WideCharToMultiByte
LocalAlloc
ExitThread
GetFileType
SetEndOfFile
HeapAlloc
HeapDestroy
GetStartupInfoA
VirtualAllocEx
lstrcpynA
MoveFileExA
GetCurrentThreadId
SetEvent
HeapFree
GetModuleFileNameA
lstrcmpiA
VirtualAlloc
SetHandleCount
GetFileAttributesA
FindFirstFileA
EnterCriticalSection
GetCPInfo
lstrcatA
GlobalAddAtomA

user32

EndPaint
DefFrameProcA
GetWindow
GetCursor
GetClassInfoA
SetWindowLongA
GetFocus
EnumThreadWindows
GetWindowTextA
SetTimer
IsMenu
GetActiveWindow
GetPropA
ClientToScreen
GetMenuItemID
CallNextHookEx
CheckMenuItem
DrawEdge
CreatePopupMenu
GetDCEx
ShowWindow
GetClipboardData
GetParent
GetMenuStringA
RegisterClassA
GetSysColorBrush
EnableMenuItem
GetMessagePos
IsChild
CharNextA
CharLowerA
DrawIcon
DrawMenuBar
GetSysColor
ShowScrollBar
DrawFrameControl
IsWindowVisible
FindWindowA
DispatchMessageA
DefWindowProcA
CallWindowProcA
BeginDeferWindowPos
EnumChildWindows
GetMenuItemCount
GetCursorPos
SystemParametersInfoA
EnableScrollBar
GetScrollRange
GetForegroundWindow
FillRect
DispatchMessageW
EnumWindows
GetCapture
GetDesktopWindow
SetWindowPos
CreateIcon
FrameRect
GetMenu
GetDC
IsWindowEnabled
TrackPopupMenu
SetWindowTextA
GetLastActivePopup
DefMDIChildProcA
GetMenuItemInfoA
GetScrollInfo
CreateMenu
GetDlgItem
GetSubMenu
CreateWindowExA
MessageBoxA
GetKeyNameTextA
GetIconInfo
GetKeyState
EqualRect
DrawTextA
DrawIconEx
CharToOemA
EndDeferWindowPos
HideCaret

Sections

text
Size: 29KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 52KB - Virtual size: 51KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: 512B - Virtual size: 458B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.init
Size: 1024B - Virtual size: 679B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 571B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

566326e3fd79eae6a11491b6801baaac

Headers

File Characteristics

Imports

msvcrt

comdlg32

kernel32

user32

Sections

text Size: 29KB - Virtual size: 28KB

.idata Size: 52KB - Virtual size: 51KB

.rdata Size: 5KB - Virtual size: 5KB

.bss Size: 512B - Virtual size: 458B

.init Size: 1024B - Virtual size: 679B

.rsrc Size: 1024B - Virtual size: 571B

text
Size: 29KB - Virtual size: 28KB

.idata
Size: 52KB - Virtual size: 51KB

.rdata
Size: 5KB - Virtual size: 5KB

.bss
Size: 512B - Virtual size: 458B

.init
Size: 1024B - Virtual size: 679B

.rsrc
Size: 1024B - Virtual size: 571B