070cf09d9b5a3225eb0a3ec25fe90f92

Sharing

Copy URL Twitter E-mail

General

Target

070cf09d9b5a3225eb0a3ec25fe90f92
Size

220KB
MD5

070cf09d9b5a3225eb0a3ec25fe90f92
SHA1

c091b794dbd8805d59eb58771c731513602e3b3f
SHA256

e4cdb41ab5e621bbaafea3737e481176f116cd125b49d68d29d2e786828de570
SHA512

c3e5a3e0734ffd26e99cec64d3f8b31661b0228fe00694e9845183e7aea5fb99b9039ca55f010bee874cd7b4ca06e8829a72e540a5ca3681bbe59ccdca91471c
SSDEEP

3072:9MuU29SuQ1dnnANYtb9zXJJS559fZAZ9FDOhemSHmACHq/QzJnuX7fhUCYSHS2/B:/9411AGTEDZDSGACHq4zJchPHr

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
070cf09d9b5a3225eb0a3ec25fe90f92

Files

070cf09d9b5a3225eb0a3ec25fe90f92
.exe windows:5 windows x86 arch:x86

7989928492fb8df6321222abd2344a13

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

SetScrollRange
LoadMenuW
FillRect
ScreenToClient
SetWindowLongW
ShowCaret
InsertMenuItemW
CreateWindowExW
GetUpdateRgn
CopyImage
SetCaretPos
IsIconic
DestroyWindow
GetUpdateRect
CreateIconIndirect
VkKeyScanW
SetClassLongW
GetWindowPlacement
SetScrollInfo
GetMenuStringA
EnableMenuItem
SetPropW
IsWindowVisible
EndPaint
GetMessageW
IsCharAlphaNumericA
MapDialogRect
BringWindowToTop
SwitchToThisWindow
FindWindowExW
ShowWindow
CreatePopupMenu
GetParent
MapWindowPoints
RegisterClassW

gdi32

GetTextCharsetInfo
GetTextColor
WidenPath
ExtTextOutA
GetCurrentObject
CreateBitmapIndirect
SetDIBits
GetPixel
Polyline
AddFontResourceW
SetDIBitsToDevice
GetCharWidth32W
GetTextFaceW
RemoveFontResourceW
GetTextMetricsW

comctl32

PropertySheetA
ImageList_Remove
ImageList_GetIcon

kernel32

GetCommModemStatus
GlobalHandle
FindFirstFileW
TlsFree
HeapValidate
Sleep
UnlockFile
LoadLibraryW
lstrcmpA
OpenFile
CreateFileMappingW
FindResourceW
lstrlenA
AddAtomW
HeapFree
AreFileApisANSI
CreateRemoteThread

msvcrt

_controlfp
__set_app_type
__p__fmode
__p__commode
localtime
strncpy
sprintf
fputc
_amsg_exit
_initterm
_acmdln
exit
_ismbblead
fclose
_XcptFilter
wcschr
iswdigit
_exit
_cexit
__setusermatherr
wcscpy
fgets
strtok
__getmainargs

Exports

Exports

AlphaBlend
GradientFill
TransparentBlt
?ExecuteImageEUYIDH@@YGKEPA_WG@Z

Sections

.text
Size: 177KB - Virtual size: 177KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idat
Size: 512B - Virtual size: 396B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.dat_0
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.xdiag
Size: 512B - Virtual size: 28B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.dat_1
Size: 512B - Virtual size: 280B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.dat_2
Size: 1024B - Virtual size: 610B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ydiag
Size: 512B - Virtual size: 70B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 33KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7989928492fb8df6321222abd2344a13

Headers

File Characteristics

Imports

user32

gdi32

comctl32

kernel32

msvcrt

Exports

Exports

Sections

.text Size: 177KB - Virtual size: 177KB

.idat Size: 512B - Virtual size: 396B

.data Size: 2KB - Virtual size: 2KB

.dat_0 Size: 2KB - Virtual size: 1KB

.xdiag Size: 512B - Virtual size: 28B

.dat_1 Size: 512B - Virtual size: 280B

.dat_2 Size: 1024B - Virtual size: 610B

.ydiag Size: 512B - Virtual size: 70B

.rsrc Size: 33KB - Virtual size: 32KB

.reloc Size: 1KB - Virtual size: 1KB

.text
Size: 177KB - Virtual size: 177KB

.idat
Size: 512B - Virtual size: 396B

.data
Size: 2KB - Virtual size: 2KB

.dat_0
Size: 2KB - Virtual size: 1KB

.xdiag
Size: 512B - Virtual size: 28B

.dat_1
Size: 512B - Virtual size: 280B

.dat_2
Size: 1024B - Virtual size: 610B

.ydiag
Size: 512B - Virtual size: 70B

.rsrc
Size: 33KB - Virtual size: 32KB

.reloc
Size: 1KB - Virtual size: 1KB