0803dac1b631bfd080da0efd85b8f4d6

Sharing

Copy URL Twitter E-mail

General

Target

0803dac1b631bfd080da0efd85b8f4d6
Size

203KB
MD5

0803dac1b631bfd080da0efd85b8f4d6
SHA1

37f504bce39430e8180fe5dd659ff9c88a26830b
SHA256

55f85d7b9846921dc6be12a9857c6ebd133336aac243cff0072924cf05fa259a
SHA512

fb9f777a6e332dfc74cf336e3ec15aabfeba62d61059e5abfb8810cc789cae24dce8a04e790831b290aaf5530cbac81449225e73a9cfb4877dd72435bdcbf339
SSDEEP

3072:7ER5Nb87yd6SuK1JvXDhAqvtLHaEBbaYsPj7:7EJ2K1JvNveEB5sb

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0803dac1b631bfd080da0efd85b8f4d6

Files

0803dac1b631bfd080da0efd85b8f4d6
.exe windows:4 windows x86 arch:x86

136db80e703cd4e800a7bb0c71c67b71

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

user32

IsIconic
SetCapture
FillRect
SetWindowsHookExA
CharNextA
SetActiveWindow
PeekMessageW
IsDialogMessageA
GetWindowLongW
GetKeyboardLayoutNameA
PtInRect
EnumWindows
GetClassInfoA
DefFrameProcA
GetMenu
RemoveMenu
SetParent
OffsetRect
GetWindowLongA
GetSysColor
MessageBeep
IsWindow
OemToCharA
MessageBoxA
EndPaint
GetWindowThreadProcessId
GetWindow
GetKeyboardState
RegisterWindowMessageA
GetClientRect
GetDlgItem
UnhookWindowsHookEx
InsertMenuA
GetKeyNameTextA
GetSystemMetrics
SetForegroundWindow
CheckMenuItem
SetWindowPlacement
GetMenuItemCount
SetScrollPos
DrawFrameControl
GetKeyboardLayout
GetWindowDC
ReleaseCapture
ScreenToClient
GetClipboardData
SendMessageW
SetWindowTextA
SetRect
GetDesktopWindow
ActivateKeyboardLayout
CloseClipboard
GetMenuStringA
InflateRect
TrackPopupMenu
DefWindowProcA
DestroyMenu
DrawEdge
SetFocus
CharUpperBuffA
SetWindowPos
SendMessageA
DrawAnimatedRects
LoadCursorA
GetClassLongA
DestroyCursor
CharLowerBuffA
LoadIconA
DefMDIChildProcA
SetScrollInfo
GetKeyboardLayoutList

kernel32

VirtualAllocEx
VirtualAlloc
LocalAlloc
GetCommandLineA
GetModuleHandleA
ExitProcess
GlobalAlloc
GetProcAddress
LoadLibraryA
ExitThread
IsBadReadPtr
GetLastError
GetVersionExA

comctl32

ImageList_Remove
ImageList_Create
ImageList_DrawEx
ImageList_Destroy
ImageList_GetBkColor
ImageList_DragShowNolock
ImageList_Draw
ImageList_Add

gdi32

GetPaletteEntries
GetDIBits
GetDIBColorTable
CreatePenIndirect
SetBkMode
GetObjectA
CreatePalette
LineTo
GetPixel

oleaut32

SafeArrayPtrOfIndex
RegisterTypeLib
SafeArrayGetElement
SysStringLen

Sections

.text
Size: 64KB - Virtual size: 64KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 125KB - Virtual size: 124KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.RSRC6
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.RSRC3
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.RSRC9
Size: 1024B - Virtual size: 950B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.RSRC5
Size: 512B - Virtual size: 463B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.RSRC1
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.RSRC8
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 992B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

136db80e703cd4e800a7bb0c71c67b71

Headers

File Characteristics

Imports

user32

kernel32

comctl32

gdi32

oleaut32

Sections

.text Size: 64KB - Virtual size: 64KB

DATA Size: 125KB - Virtual size: 124KB

.RSRC6 Size: 1KB - Virtual size: 1KB

.RSRC3 Size: 2KB - Virtual size: 1KB

.RSRC9 Size: 1024B - Virtual size: 950B

.RSRC5 Size: 512B - Virtual size: 463B

.RSRC1 Size: 1KB - Virtual size: 1KB

.RSRC8 Size: 5KB - Virtual size: 4KB

.rsrc Size: 1024B - Virtual size: 992B

.text
Size: 64KB - Virtual size: 64KB

DATA
Size: 125KB - Virtual size: 124KB

.RSRC6
Size: 1KB - Virtual size: 1KB

.RSRC3
Size: 2KB - Virtual size: 1KB

.RSRC9
Size: 1024B - Virtual size: 950B

.RSRC5
Size: 512B - Virtual size: 463B

.RSRC1
Size: 1KB - Virtual size: 1KB

.RSRC8
Size: 5KB - Virtual size: 4KB

.rsrc
Size: 1024B - Virtual size: 992B