03baa6e15a83fc4c38c15f3667ee1cd7

Sharing

Copy URL Twitter E-mail

General

Target

03baa6e15a83fc4c38c15f3667ee1cd7
Size

272KB
MD5

03baa6e15a83fc4c38c15f3667ee1cd7
SHA1

3e480fe75aa844c87c4652238cc92123faca1329
SHA256

5b828cc24ce226723a55bb53ad63378029b719ba128a97647f329a2fc0936ba0
SHA512

24578b0da90e34d97071938eb591908628370b130ab03d1ee5d880d566ee8b12c36f9bf6cc4a870241c52be314d3e0288a1dfb1538d2bc5bd7db76150f13d028
SSDEEP

6144:DAzzqgrVC6PD/mh2cdtAv7s4cpDNuuZKgK3I0RIY9e:UzqgE6PTmh2CGKpDMujO5Q

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
03baa6e15a83fc4c38c15f3667ee1cd7

Files

03baa6e15a83fc4c38c15f3667ee1cd7
.exe windows:4 windows x86 arch:x86

eba4d36e22f02478a2550502389cb9f9

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

GetDIBits
GetTextAlign
DeleteEnhMetaFile
PaintRgn
GdiPlayDCScript
ResetDCW
PtVisible
CreatePolyPolygonRgn
BeginPath
GetTextExtentPointA
CreateRectRgn
CopyMetaFileW
GetEnhMetaFileDescriptionW
ExtEscape
ResizePalette
EndDoc
GetEnhMetaFileDescriptionA
CreateDCA
SaveDC

user32

CreateAcceleratorTableA
DragDetect
DrawTextA
DestroyMenu
CreateCursor
VkKeyScanW
ShowWindow
CreateWindowExA
EnumPropsExW
RegisterClassA
DdeCreateDataHandle
GetCaretPos
FlashWindow
DestroyCaret
CreateDialogParamA
DialogBoxParamW
MessageBoxA
RegisterClassExA
DrawCaption
MonitorFromPoint
BeginDeferWindowPos
EndDialog
LoadCursorFromFileA
DdeCreateStringHandleA
GetMenuStringW
ReplyMessage
InsertMenuA

shell32

ShellExecuteEx
RealShellExecuteW
ShellExecuteW
SHFileOperationA

kernel32

IsBadWritePtr
GlobalAddAtomA
CreateWaitableTimerA
GetStdHandle
UnhandledExceptionFilter
VirtualAlloc
GetTimeZoneInformation
GetCommandLineA
FreeLibraryAndExitThread
HeapSize
GetCurrentThread
SetLastError
GetStringTypeW
SetHandleCount
SetEnvironmentVariableW
LCMapStringW
GetSystemTimeAsFileTime
GetCPInfo
RtlUnwind
CreateMutexA
TlsGetValue
GetEnvironmentStrings
GetCurrentProcessId
EnterCriticalSection
DeleteFileA
GetStringTypeA
InterlockedIncrement
VirtualQuery
TerminateProcess
CompareStringA
GetTickCount
GetModuleFileNameW
WideCharToMultiByte
ReadFile
TlsAlloc
WriteFile
GetStartupInfoA
HeapDestroy
TlsFree
QueryPerformanceCounter
HeapCreate
FlushFileBuffers
VirtualFree
LoadLibraryA
GetModuleHandleA
TlsSetValue
HeapReAlloc
FreeEnvironmentStringsA
InterlockedDecrement
LCMapStringA
GetACP
GetEnvironmentStringsW
GetCommandLineW
SetStdHandle
CompareStringW
InterlockedExchange
HeapAlloc
GetLocalTime
GetVersion
GetSystemDefaultLangID
MultiByteToWideChar
FormatMessageW
ExitProcess
GetFileType
LeaveCriticalSection
GetProcAddress
GetSystemTime
FreeEnvironmentStringsW
GetModuleFileNameA
SetFilePointer
MapViewOfFile
SetEnvironmentVariableA
CreateSemaphoreW
CloseHandle
GetCurrentProcess
DeleteCriticalSection
OpenMutexA
ContinueDebugEvent
InitializeCriticalSection
GetLastError
GetExitCodeProcess
HeapFree
GetCurrentThreadId
GetStartupInfoW

comctl32

_TrackMouseEvent
ImageList_SetFlags
CreateToolbarEx
ImageList_GetImageCount
ImageList_GetFlags
ImageList_SetBkColor
ImageList_DragMove
ImageList_LoadImage
ImageList_DragLeave
DrawStatusTextA
ImageList_Copy
ImageList_SetFilter
ImageList_AddIcon
InitCommonControlsEx
ImageList_DrawEx
GetEffectiveClientRect
CreatePropertySheetPageA
CreateUpDownControl
ImageList_LoadImageA
ImageList_SetOverlayImage
DestroyPropertySheetPage
ImageList_LoadImageW
ImageList_Remove
ImageList_Draw

Sections

.text
Size: 155KB - Virtual size: 155KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 16KB - Virtual size: 43KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 84KB - Virtual size: 83KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

eba4d36e22f02478a2550502389cb9f9

Headers

File Characteristics

Imports

gdi32

user32

shell32

kernel32

comctl32

Sections

.text Size: 155KB - Virtual size: 155KB

.rdata Size: 16KB - Virtual size: 43KB

.data Size: 84KB - Virtual size: 83KB

.rsrc Size: 16KB - Virtual size: 15KB

.text
Size: 155KB - Virtual size: 155KB

.rdata
Size: 16KB - Virtual size: 43KB

.data
Size: 84KB - Virtual size: 83KB

.rsrc
Size: 16KB - Virtual size: 15KB