09255d78e3daaae8043688b1963f155d

Sharing

Copy URL

Twitter E-mail

General

Target

09255d78e3daaae8043688b1963f155d
Size

168KB
MD5

09255d78e3daaae8043688b1963f155d
SHA1

a5465cc5cab3291d48854146835bd260e80469c4
SHA256

eb08dd2c975cfa5492b67e98ad542edbaa65c171e8def6a84ff65cef416fef53
SHA512

ef4ca5c4ce69727a223f23a2cdc1efa00a4b08eca696e8474ca0511318263d73acc6eb902bc8985942d8b5a45d5390db69cfb2e1d54ba331d5fc646553b28c50
SSDEEP

3072:VrivnpYpTwF1wzpQzUecBi9ttOZzHUZmXmraF7NNrmg1:VyCV2wzOgB3FHGK+aF7NBJ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
09255d78e3daaae8043688b1963f155d

Files

09255d78e3daaae8043688b1963f155d
.exe windows:4 windows x86 arch:x86

26922ea5c4b477db3d2f461ef588b848

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetScrollPos
GetMenuItemInfoA
GetFocus
SetWindowLongA
GetKeyState
BeginDeferWindowPos
IsChild
HideCaret
GetWindow
GetDC
SetTimer
GetForegroundWindow
GetScrollRange
GetMenu
FindWindowA
EqualRect
DispatchMessageW
DrawIconEx
DefWindowProcA
CheckMenuItem
GetMenuState
GetMenuStringA
GetCursor
IsWindowVisible
CharNextA
CreateWindowExA
GetSysColorBrush
DrawFrameControl
CreateIcon
ClientToScreen
EnableScrollBar

msvcrt

strcmp
calloc
tan
memcpy

comdlg32

FindTextA
GetFileTitleA
GetSaveFileNameA

shell32

DragQueryFileA
Shell_NotifyIconA

oleaut32

OleLoadPicture

kernel32

GetUserDefaultLCID
CreateEventA
HeapFree
GetFileAttributesA
GetFileType
SizeofResource
GetThreadLocale
GetEnvironmentStrings
SetEvent
LoadLibraryExA
CreateThread
GetLocalTime
ExitProcess
MoveFileExA
GetCurrentProcess
CompareStringA
GetACP
FindClose
HeapAlloc
LoadResource
WaitForSingleObject
GlobalDeleteAtom
GlobalFindAtomA
GetCurrentThreadId
LocalFree
GetModuleFileNameA
lstrcpynA
CloseHandle
EnumCalendarInfoA
FreeResource
LockResource
GetLastError
LoadLibraryA
InitializeCriticalSection
GetFullPathNameA
GetVersion
lstrcatA
GetLocaleInfoA
LocalReAlloc
WideCharToMultiByte
GlobalAddAtomA
lstrcmpA
VirtualAllocEx
GetSystemDefaultLangID
GetStringTypeW
GetCommandLineA
GetStringTypeA
VirtualQuery
lstrcmpiA
SetEndOfFile
DeleteFileA
Sleep
GetCPInfo
FormatMessageA
LocalAlloc
VirtualAlloc
GlobalAlloc
GetCurrentProcessId
GetModuleHandleA
GetTickCount
GetOEMCP
GetProcAddress

version

VerInstallFileA

Sections

.text
Size: 47KB - Virtual size: 46KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

BSS
Size: 512B - Virtual size: 76KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: 119KB - Virtual size: 119KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

26922ea5c4b477db3d2f461ef588b848

Headers

File Characteristics

Imports

user32

msvcrt

comdlg32

shell32

oleaut32

kernel32

version

Sections

.text Size: 47KB - Virtual size: 46KB

BSS Size: 512B - Virtual size: 76KB

.bss Size: 119KB - Virtual size: 119KB

.text
Size: 47KB - Virtual size: 46KB

BSS
Size: 512B - Virtual size: 76KB

.bss
Size: 119KB - Virtual size: 119KB