04b3e1899920dc5ee96803c1e49e4946

Sharing

Copy URL

Twitter E-mail

General

Target

04b3e1899920dc5ee96803c1e49e4946
Size

268KB
MD5

04b3e1899920dc5ee96803c1e49e4946
SHA1

be47013c565de9b9d594d7f199b283fc1bd12f47
SHA256

14b3ea93690a14e342586b51362c71775ff5bf9f071e7a1ca17516037d177795
SHA512

fafa2a52d65d96b277e29a1200b8fc21deceee74696c4341426360f0bb8460bb32854a4d5059d2126f26b81e641b2d9ce3e8225f8aaded0da5c1993f29253316
SSDEEP

6144:Rh76N0bgzLY39HU8CoijIXte/i2eXwiFhduyT:Rh6nQNHVij8erS

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
04b3e1899920dc5ee96803c1e49e4946

Files

04b3e1899920dc5ee96803c1e49e4946
.exe windows:4 windows x86 arch:x86

1f03b78905ccddc74970b13aef7777b2

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

DispatchMessageA
EnableMenuItem
FillRect
TabbedTextOutA
ClipCursor

ole32

OleRegEnumVerbs
CreateItemMoniker
SetConvertStg
OleIsRunning

gdi32

TextOutW
Escape
GetCharWidthW
LPtoDP
CopyMetaFileW
Polyline
SetRectRgn
CreateBitmap
CreateHalftonePalette
CreateFontIndirectW
GetTextExtentPointW
GetClipRgn
GetTextFaceA
GetViewportOrgEx
GetCurrentObject
CreateFontA
Rectangle
Ellipse
CreateDIBSection
LineDDA
GetDIBColorTable
GetDeviceCaps
DPtoLP
GetClipBox
GetWindowOrgEx
SetBrushOrgEx
GetTextExtentExPointW
RoundRect
FillRgn
EnumFontFamiliesExW
ExtTextOutW
OffsetViewportOrgEx

oleaut32

SafeArrayPutElement

kernel32

CreateEventA
GetShortPathNameA
MultiByteToWideChar
LocalReAlloc
ReadFile
GetCPInfo
SetEnvironmentVariableW
WritePrivateProfileStringA
lstrcpyA
SetEvent
GetLocaleInfoW
FindResourceA
IsDBCSLeadByteEx
ResumeThread
RaiseException
TlsAlloc
SetFileAttributesW
GetFileAttributesA
lstrlenA
GetProfileStringW
HeapFree
GlobalFlags
GetSystemPowerStatus
GetSystemDirectoryW
_lread
GlobalDeleteAtom
lstrcpyW
GetCurrentProcessId
GetPriorityClass
DeleteCriticalSection
SetFileTime
GetComputerNameA
OpenProcess
lstrcmpW
HeapSize
GlobalAddAtomW
GetPrivateProfileStringA
CreateSemaphoreW
FindNextFileA
GetModuleFileNameA
EnumResourceNamesW
LocalFree
GetLocalTime
ReleaseMutex
CreateToolhelp32Snapshot
HeapDestroy
LoadLibraryA
GetModuleHandleW
TerminateProcess
VerSetConditionMask
UnhandledExceptionFilter
GetModuleHandleA
GetStartupInfoA
GetVersion
ExitProcess
GetCurrentThreadId
TlsSetValue
SetLastError
TlsGetValue
GetLastError
RtlUnwind
GetCurrentProcess
HeapAlloc
GetACP
GetOEMCP
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
GetEnvironmentVariableA
GetVersionExA
HeapCreate
VirtualFree
WriteFile
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
HeapReAlloc
LCMapStringA
LCMapStringW
GetStringTypeA
GetProcAddress
InterlockedDecrement
InterlockedIncrement
ConvertDefaultLocale
CreateFileMappingA
FileTimeToSystemTime
RemoveDirectoryW
GetCommandLineA
VirtualAlloc
GlobalAlloc
SetPriorityClass
GetStringTypeW

shlwapi

StrRetToStrW

comdlg32

ChooseColorA
GetFileTitleA
CommDlgExtendedError

shell32

DragFinish

advapi32

GetSidLengthRequired
RegEnumKeyA
RegOpenKeyExW
RegDeleteValueA
CryptAcquireContextA
ConvertSidToStringSidA
GetSidSubAuthority
GetUserNameW
ConvertStringSidToSidW
OpenServiceW
ConvertSidToStringSidW
ReportEventA
ControlService
QueryServiceStatus
MakeAbsoluteSD

comctl32

ImageList_Destroy
ImageList_Remove
PropertySheetW
ImageList_GetImageCount
ImageList_ReplaceIcon

version

GetFileVersionInfoA

Sections

.text
Size: 217KB - Virtual size: 216KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 33KB - Virtual size: 33KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 15KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1f03b78905ccddc74970b13aef7777b2

Headers

File Characteristics

Imports

user32

ole32

gdi32

oleaut32

kernel32

shlwapi

comdlg32

shell32

advapi32

comctl32

version

Sections

.text Size: 217KB - Virtual size: 216KB

.rdata Size: 33KB - Virtual size: 33KB

.data Size: 15KB - Virtual size: 16KB

.rsrc Size: 2KB - Virtual size: 1KB

.text
Size: 217KB - Virtual size: 216KB

.rdata
Size: 33KB - Virtual size: 33KB

.data
Size: 15KB - Virtual size: 16KB

.rsrc
Size: 2KB - Virtual size: 1KB