2090f70299097f38b6d2694d4cd60ac6

Sharing

Copy URL Twitter E-mail

General

Target

2090f70299097f38b6d2694d4cd60ac6
Size

1.0MB
MD5

2090f70299097f38b6d2694d4cd60ac6
SHA1

b436d908fae7cb38fba1bceadfcbeec5e8712e1b
SHA256

68588452e94ebabb5e67be1434bbac5133330777b1d1e6a339cf00a34aabc51f
SHA512

6fd3140dfebbb2d64eacb37b803033c931edf652f51c6a96432211984464036eaa02dc80e9231276f7404e409319208b0fd5b8253d39dcefd82fc128639465e8
SSDEEP

24576:sVOZy48mrXwc91b7RYCCEyN5dHCzVjziFefcJGAGbKYv4LhMLM:iEyXmzf1bdGETzVEq60bKYwLl

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2090f70299097f38b6d2694d4cd60ac6

Files

2090f70299097f38b6d2694d4cd60ac6
.exe windows:4 windows x86 arch:x86

d6603c386dfdbf7b1ceda9b7c1082df7

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetDlgItemTextA
GetWindowWord
DefWindowProcA
GetSysColor
SetWindowWord
BeginPaint
EndPaint
GetClientRect
SetRect
OemToCharBuffA
RegisterClassA
LoadIconA
GetLastActivePopup
LoadCursorA
CharUpperBuffA
EnableWindow
ShowWindow
PostMessageA
GetWindowLongA
SendMessageA
GetTopWindow
SetForegroundWindow
SetWindowLongA
SetWindowTextA
GetMessageA
SetActiveWindow
SetTimer
DialogBoxIndirectParamA
PostQuitMessage
KillTimer
CharNextA
EndDialog
GetWindowRect
GetSystemMetrics
SetWindowPos
PeekMessageA
TranslateMessage
DispatchMessageA
GetParent
SetDlgItemTextA
SendDlgItemMessageA
GetDlgItem
InvalidateRect
UpdateWindow
wsprintfA
MessageBoxA
SetCursor

kernel32

_lclose
GetLastError
RtlUnwind
GetVolumeInformationA
GetModuleHandleA
ExitProcess
GetCommandLineA
MoveFileExA
CreateFileA
FindNextFileA
CreateFileMappingA
MapViewOfFile
GetFileSize
CloseHandle
SetFilePointer
UnmapViewOfFile
RemoveDirectoryA
SetFileAttributesA
SetEndOfFile
GetModuleFileNameA
SetErrorMode
DeleteFileA
LoadLibraryA
GetProcAddress
GetVersion
WaitForSingleObject
GetTickCount
FreeLibrary
GetEnvironmentVariableA
OpenFile
GetWindowsDirectoryA
GlobalHandle
lstrcatA
FindClose
FindFirstFileA
SetCurrentDirectoryA
CreateDirectoryA
SetFileTime
LocalFileTimeToFileTime
DosDateTimeToFileTime
_lcreat
lstrcpyA
_lopen
lstrlenA
GlobalUnlock
LocalAlloc
_lwrite
_lread
GetDriveTypeA
_llseek
LocalFree
FormatMessageA
WinExec
CreateProcessA
GlobalLock
GlobalAlloc
GlobalFree

gdi32

GetBkColor
SetBkColor
SetTextColor
SetTextAlign
DeleteObject
GetTextExtentPoint32A
ExtTextOutA
CreateDCA
GetDeviceCaps
CreateFontIndirectA
DeleteDC
SelectObject

comctl32

ord17

Sections

.text
Size: 24KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 52KB - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

_winzip_
Size: 1.7MB - Virtual size: 1.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d6603c386dfdbf7b1ceda9b7c1082df7

Headers

File Characteristics

Imports

user32

kernel32

gdi32

comctl32

Sections

.text Size: 24KB - Virtual size: 20KB

.rdata Size: 4KB - Virtual size: 2KB

.data Size: 4KB - Virtual size: 6KB

.rsrc Size: 52KB - Virtual size: 52KB

_winzip_ Size: 1.7MB - Virtual size: 1.7MB

.text
Size: 24KB - Virtual size: 20KB

.rdata
Size: 4KB - Virtual size: 2KB

.data
Size: 4KB - Virtual size: 6KB

.rsrc
Size: 52KB - Virtual size: 52KB

_winzip_
Size: 1.7MB - Virtual size: 1.7MB