056d571225959f38a8de110391783a72

Sharing

Copy URL Twitter E-mail

General

Target

056d571225959f38a8de110391783a72
Size

46KB
MD5

056d571225959f38a8de110391783a72
SHA1

69988ba9f84377e958d0ad3106133e1431406e44
SHA256

dcb1168a938eb43ca3d47fd936f38e300387eff0ddf9d2f455a5f75652248ce0
SHA512

a2586aa44bce8637f9a7f2650f371e2de675dcb7676eef189d2b0488c4510d57d1b6d08d1e282461bdfb513418dfca446da478b40a0d2e0dbb76643f4c697a87
SSDEEP

768:mW1pvSgKR7HXR3+Ll9L9wI7ifLZfb3VgbDMXtP+T0VJ4NWmB6jSx2bnFCUnHHeza:4lHB3IL5Fif1b3KfMdP+cJ4EmB6jSMnJ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
056d571225959f38a8de110391783a72

Files

056d571225959f38a8de110391783a72
.exe windows:1 windows x86 arch:x86

db7548e69d63a5711a162a09aef10634

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetParent
CallWindowProcA
PostMessageA
CheckMenuItem
ModifyMenuA
EnableMenuItem
PostQuitMessage
CloseClipboard
EmptyClipboard
OpenClipboard
wvsprintfA
DestroyWindow
GetWindowTextA
SendDlgItemMessageA
DefDlgProcA
GetDlgItemInt
EndDialog
GetClipboardOwner
SetDlgItemInt
GetWindowLongA
SetWindowLongA
SetFocus
TranslateAcceleratorA
SendMessageA
UpdateWindow
WaitMessage
DialogBoxParamA
MessageBeep
MessageBoxA
GetDlgItemTextA
LoadAcceleratorsA
LoadIconA
RegisterClassA
SetCursor
ShowWindow
SetActiveWindow
SetWindowTextA
GetDC
BeginPaint
ReleaseDC
SetScrollPos
SetScrollRange
GetClientRect
EndPaint
LoadStringA
FrameRect
InflateRect
GetScrollPos
wsprintfA
GetSysColor
TranslateMessage
DispatchMessageA
PeekMessageA
InvalidateRect
DefWindowProcA
GetAsyncKeyState
LoadCursorA
SetDlgItemTextA
CreateWindowExA

gdi32

SetBkMode
ExcludeClipRect
TextOutA
GetBkColor
CreateSolidBrush
DeleteObject
GetStockObject
SelectObject
PatBlt
SetBkColor
ExtTextOutA

kernel32

GlobalFree
GetACP
lstrcpyA
GetModuleFileNameA
GlobalAlloc
GlobalHandle
lstrlenA
GlobalUnlock
GlobalReAlloc
GetLastError
VirtualAlloc
VirtualFree
GetFileType
GetStdHandle
GetCPInfo
GetOEMCP
GetVersion
GlobalSize
UnhandledExceptionFilter
RtlUnwind
ExitProcess
GetCommandLineA
GetEnvironmentStrings
GetStartupInfoA
GetModuleHandleA
GlobalLock

comdlg32

GetSaveFileNameA

msvfw32

DrawDibDraw
ord2
DrawDibOpen
DrawDibClose
DrawDibRealize
GetOpenFileNamePreviewA

avifil32

AVIStreamRelease
AVIBuildFilterA
AVISaveVA
AVISaveOptions
EditStreamCopy
EditStreamCut
EditStreamClone
AVIMakeFileFromStreams
AVIPutFileOnClipboard
EditStreamPaste
EditStreamSetInfoA
AVIClearClipboard
AVIFileExit
AVIGetFromClipboard
EditStreamSetNameA
AVIFileInit
AVIFileOpenA
AVIFileGetStream
CreateEditableStream
AVIFileRelease
AVISaveOptionsFree
AVIStreamLength
AVIStreamGetFrameClose
AVIStreamGetFrameOpen
AVIStreamInfoA
AVIStreamGetFrame
AVIStreamRead
AVIStreamStart
AVIStreamSampleToTime
AVIStreamTimeToSample
AVIStreamReadFormat

winmm

waveOutRestart
waveOutPrepareHeader
waveOutOpen
sndPlaySoundA
waveOutGetPosition
waveOutWrite
waveOutUnprepareHeader
waveOutPause
waveOutReset
waveOutClose
timeGetTime

shell32

DragFinish
DragQueryFileA
DragAcceptFiles

Sections

.text
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: - Virtual size: 5KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 51KB - Virtual size: 51KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

db7548e69d63a5711a162a09aef10634

Headers

File Characteristics

Imports

user32

gdi32

kernel32

comdlg32

msvfw32

avifil32

winmm

shell32

Sections

.text Size: 28KB - Virtual size: 27KB

.bss Size: - Virtual size: 5KB

.rdata Size: 512B - Virtual size: 12B

.data Size: 2KB - Virtual size: 1KB

.idata Size: 4KB - Virtual size: 3KB

.rsrc Size: 6KB - Virtual size: 5KB

.reloc Size: 51KB - Virtual size: 51KB

.text
Size: 28KB - Virtual size: 27KB

.bss
Size: - Virtual size: 5KB

.rdata
Size: 512B - Virtual size: 12B

.data
Size: 2KB - Virtual size: 1KB

.idata
Size: 4KB - Virtual size: 3KB

.rsrc
Size: 6KB - Virtual size: 5KB

.reloc
Size: 51KB - Virtual size: 51KB