0258bc32deb2a10e7509e0a18cf945e1

Sharing

Copy URL Twitter E-mail

General

Target

0258bc32deb2a10e7509e0a18cf945e1
Size

216KB
MD5

0258bc32deb2a10e7509e0a18cf945e1
SHA1

fedc018558c038ce43043afc22600ee710a18854
SHA256

7c7c9ce3f49037129b8a0bce52dd9cfc7a7b3ff93cf78bb3313cee417d8be6f3
SHA512

729af976877f335005cb50d6c487eb34a155b144489af468097185092d3926a382b581dd314a872f2eda10882bd94e29b0348a35597f652f1b9118449d2e9028
SSDEEP

3072:T/rYBl6EaDcko8r+kJ4Zo9lbOWmaUZ6sgGYEmR5i2YzQoeoKm4Bf05n2d:Lr88nckVr+E4MpSvYEmD/oKm4M2

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0258bc32deb2a10e7509e0a18cf945e1

Files

0258bc32deb2a10e7509e0a18cf945e1
.exe windows:4 windows x86 arch:x86

564336388a49a05c2198acd236fc92f3

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleA
LocalAlloc
GetVersionExA
IsBadReadPtr
GetCommandLineW
ExitProcess
GetOEMCP
GetLastError
ExitThread
lstrlenA
LoadLibraryExA
GetProcAddress
VirtualAllocEx

shell32

SHGetDesktopFolder
Shell_NotifyIconA
DragQueryFileA
SHGetFileInfoA
SHFileOperationA

comdlg32

ChooseColorA
GetOpenFileNameA
FindTextA

user32

DrawTextA
GetCapture
DefMDIChildProcA
SetPropA
GetMessagePos
GetIconInfo
GetKeyState
DrawMenuBar
SetWindowPos
DestroyMenu
CreateMenu
EnumChildWindows
InsertMenuItemA
CharNextW
SendMessageA
DestroyWindow
DeleteMenu
PeekMessageA
DrawFrameControl
CharUpperBuffA
GetClassLongA
CloseClipboard
SetMenu
GetClientRect
SetFocus
TranslateMessage
GetScrollRange
FindWindowA
wsprintfA
SendMessageW
ScrollWindow
EndPaint
GetKeyboardLayout
GetCursor
GetWindowThreadProcessId
ShowOwnedPopups
GetKeyboardState
EnableWindow
GetWindowDC
DestroyCursor
UpdateWindow
EnableScrollBar
GetPropA
OpenClipboard
PostQuitMessage
ShowScrollBar
GetClipboardData
CreatePopupMenu
SetTimer
DrawEdge
GetMenu
MessageBeep
SetScrollRange
ScreenToClient
IsRectEmpty
DestroyIcon
WaitMessage
GetMenuState
SetWindowsHookExA
ReleaseDC
SetRect
GetSysColorBrush
FrameRect
GetDCEx
GetWindowPlacement
SetWindowLongW
PostMessageA
GetClassInfoA
DefFrameProcA
LoadCursorA
GetLastActivePopup
FillRect
CharLowerBuffA
GetDesktopWindow
SetParent
GetForegroundWindow
ActivateKeyboardLayout
DrawIconEx
GetKeyboardLayoutList
SetScrollPos
CheckMenuItem
CallWindowProcA
SetCursor
RemoveMenu
RegisterClassA
GetKeyNameTextA
GetClassNameA
GetMenuStringA
BeginPaint
LoadKeyboardLayoutA
GetWindowRect
GetDC
GetWindowLongW
GetDlgItem
EmptyClipboard
GetFocus
MoveWindow
EqualRect
ShowWindow
LoadStringA
GetActiveWindow
IsDialogMessageW
GetParent
GetKeyboardLayoutNameA
CharToOemA
GetKeyboardType
EnableMenuItem
EnumWindows
EnumThreadWindows
GetCursorPos
MapWindowPoints
InflateRect
MapVirtualKeyA
RegisterClipboardFormatA

Sections

.text
Size: 176KB - Virtual size: 175KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

DATA
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

564336388a49a05c2198acd236fc92f3

Headers

File Characteristics

Imports

kernel32

shell32

comdlg32

user32

Sections

.text Size: 176KB - Virtual size: 175KB

.rdata Size: 4KB - Virtual size: 52KB

.data Size: 8KB - Virtual size: 6KB

DATA Size: 8KB - Virtual size: 4KB

.adata Size: 8KB - Virtual size: 6KB

.rsrc Size: 8KB - Virtual size: 7KB

.text
Size: 176KB - Virtual size: 175KB

.rdata
Size: 4KB - Virtual size: 52KB

.data
Size: 8KB - Virtual size: 6KB

DATA
Size: 8KB - Virtual size: 4KB

.adata
Size: 8KB - Virtual size: 6KB

.rsrc
Size: 8KB - Virtual size: 7KB