09fcd9fea7de1b35abeac85fd43f664c

Sharing

Copy URL Twitter E-mail

General

Target

09fcd9fea7de1b35abeac85fd43f664c
Size

315KB
MD5

09fcd9fea7de1b35abeac85fd43f664c
SHA1

7eef73ca48208fb865cb949ebd602dad8a8d9296
SHA256

5a15700f97062d537d4c5d12e56dd3aec5e13e0cd395d66e15b7f797c338d9a2
SHA512

707afc877505a425d7c926878b7e20a2d1742792a4929f61e932323c990d1bac4c22ef8532e2cb33600ee1b91ca0b3b86b00280784289af72b72d4024f375b3f
SSDEEP

6144:GoZdtY7T2rCAfo+zSbdYi4ZihnXLrEkSyQ42Yn:pZdtY7arpfobd14ghbrEkP

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
09fcd9fea7de1b35abeac85fd43f664c

Files

09fcd9fea7de1b35abeac85fd43f664c
.exe windows:4 windows x86 arch:x86

7509df6c3908951dcc1931c125b47f60

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
LoadLibraryA
GlobalReAlloc
FreeLibrary
GetTickCount
lstrcmpiA
GlobalAlloc
GlobalLock
FindNextFileA
GlobalUnlock
GlobalFree
GetWindowsDirectoryA
GetModuleFileNameA
GetPrivateProfileIntA
WritePrivateProfileStringA
GetPrivateProfileStringA
FindFirstFileA
MulDiv
ExitProcess
LCMapStringW
TerminateProcess
WideCharToMultiByte
MultiByteToWideChar
LCMapStringA
HeapFree
GetVersion
HeapAlloc
GetStartupInfoA
GetModuleHandleA
GetCommandLineA
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetCurrentProcess
GetEnvironmentStrings
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetACP
GetOEMCP
GetCPInfo
GetStdHandle
GetFileType
SetHandleCount
HeapCreate
VirtualFree
HeapDestroy
WriteFile
GetStringTypeA
RtlUnwind
GetLastError
SetFilePointer
GetStringTypeW
SetStdHandle
FlushFileBuffers
VirtualAlloc
lstrcpyA
lstrlenA
CloseHandle

user32

DestroyMenu
RemoveMenu
CreateMenu
EndPaint
wsprintfA
SetFocus
SendMessageA
GetWindowRect
ScreenToClient
CreateDialogParamA
GetMenu
InsertMenuA
DestroyWindow
MessageBoxA
InvalidateRect
GetKeyboardState
MapVirtualKeyA
PostMessageA
SetKeyboardState
ValidateRect
GetKeyState
EnableWindow
SetWindowTextA
GetDC
BeginPaint
EndDialog
SetDlgItemInt
AppendMenuA
GetSubMenu
GetActiveWindow
GetMenuState
CheckMenuItem
GetFocus
LoadBitmapA
GetWindowTextA
PostQuitMessage
TrackPopupMenu
GetClientRect
GetCursorPos
DefWindowProcA
DialogBoxParamA
WinHelpA
SetWindowPos
GetWindowDC
EnableMenuItem
RegisterClassA
LoadIconA
LoadCursorA
UpdateWindow
GetSystemMetrics
CreateWindowExA
IsDialogMessageA
GetMessageA
PeekMessageA
CheckDlgButton
TranslateMessage
DispatchMessageA
GetDlgItem
ShowWindow
SendDlgItemMessageA
GetDlgItemTextA
DrawTextA
ReleaseDC

gdi32

DeleteObject
LineTo
EnumFontFamiliesA
MoveToEx
GetObjectA
SetTextCharacterExtra
GetTextCharacterExtra
SetTextColor
GetTextExtentPointA
RoundRect
PatBlt
SetWindowOrgEx
Escape
CreatePen
GetDeviceCaps
TextOutA
CreateFontIndirectA
SelectObject
GetStockObject
BitBlt
CreateCompatibleDC
SetBkMode
DeleteDC

comdlg32

GetOpenFileNameA
PrintDlgA

winkbdrv

_SetRomanEOAccent
SetAvailScripts
Winkbdrv_Entry
SetDefAppCategory
SetSwitchKey
_AI
_MS
_HYP
ascii2iscii_init
MSWordIsGettingInputFocus
LeapEnable
FontDlgProc
_AS
_RMN
SetDualFont
SetConverter1
_LKT
ascii2iscii_convert_str
_A2I
_SCL

Exports

Exports

AboutDlgProc
KbdHelpDlgProc
MainWndProc
PrintAbortDlg
PrintAbortLoop
PrintSetup

Sections

.text
Size: 43KB - Virtual size: 42KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 19KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 176KB - Virtual size: 176KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 74KB - Virtual size: 79KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

7509df6c3908951dcc1931c125b47f60

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

winkbdrv

Exports

Exports

Sections

.text Size: 43KB - Virtual size: 42KB

.rdata Size: 1KB - Virtual size: 1KB

.data Size: 19KB - Virtual size: 34KB

.idata Size: 176KB - Virtual size: 176KB

.rsrc Size: 74KB - Virtual size: 79KB

.text
Size: 43KB - Virtual size: 42KB

.rdata
Size: 1KB - Virtual size: 1KB

.data
Size: 19KB - Virtual size: 34KB

.idata
Size: 176KB - Virtual size: 176KB

.rsrc
Size: 74KB - Virtual size: 79KB