0d61f42c2de439ec27a01982851b679b

Sharing

Copy URL

Twitter E-mail

General

Target

0d61f42c2de439ec27a01982851b679b
Size

123KB
MD5

0d61f42c2de439ec27a01982851b679b
SHA1

b0da6bf24b82d948c03a24f2b6fc9b95a9358971
SHA256

bdceae0d563c5bed261675320416067f3577a10415ffdd567e789ce7fdf6b869
SHA512

03a203936d1a92c547b01234e6e0d86b98b7e020f899554b689b8175216be9f3fbb3a6a7004f3d59d4d069741fe2688d383b317396130a0b587565f9b4b54cbc
SSDEEP

1536:cH7HCVoGc4+ib1ug+3xR0MWoRdjTylTQ5t+sNJ1+5QFtYzNPRd1eTHnEwyKqqG:cjJc1sgGDTKT8tlFjaZd1eTHEwyKqq

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0d61f42c2de439ec27a01982851b679b

Files

0d61f42c2de439ec27a01982851b679b
.exe windows:4 windows x86 arch:x86

d92b7129ea815c4a02f562acf937dfde

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

DrawMenuBar
MessageBoxA
DrawIcon
ShowScrollBar
EnableScrollBar
DrawEdge
GetMenuState
GetDesktopWindow
GetClassInfoA
GetDCEx
DrawIconEx
GetWindow
IsChild
SetWindowTextA
GetPropA
BeginPaint
CharToOemA
CreateWindowExA
EnableWindow
GetMenuItemCount
EnumWindows
EndDeferWindowPos
IsWindowVisible
CheckMenuItem
GetSysColor
GetMenu
IsDialogMessageA
GetMessagePos
GetScrollInfo
EnableMenuItem
GetMenuItemInfoA
SetCursor
FrameRect
GetMenuItemID
DeferWindowPos
CallWindowProcA
DefWindowProcA
DefFrameProcA
DispatchMessageA
GetCapture
GetFocus
GetMenuStringA
DrawTextA
GetClassLongA
EnumChildWindows
CreateMenu
GetKeyNameTextA
CharLowerBuffA
CreatePopupMenu
GetLastActivePopup
GetIconInfo
FindWindowA
TrackPopupMenu
GetScrollPos
GetActiveWindow
EqualRect
GetKeyState
SetWindowLongA
CharNextA
GetParent
GetScrollRange
DefMDIChildProcA
GetCursorPos
GetWindowTextA
GetSysColorBrush
GetClipboardData
GetCursor

msvcrt

malloc
memmove
log10
tan
_acmdln

comctl32

ImageList_Write
ImageList_Destroy
ImageList_DrawEx
ImageList_Create
ImageList_Add
ImageList_Draw
ImageList_GetBkColor
ImageList_Remove

kernel32

GetCurrentThreadId
GetStdHandle
ExitThread
DeleteFileA
SizeofResource
FreeResource
GetVersionExA
GetStartupInfoA
SetHandleCount
LoadLibraryExA
GetFullPathNameA
WaitForSingleObject
ExitProcess
GetCPInfo
SetLastError
GetProcessHeap
lstrcatA
lstrlenA
MoveFileA
SetErrorMode
CreateFileA
GetFileType
GetDateFormatA
InitializeCriticalSection
GetACP
LoadResource
FindFirstFileA
GetThreadLocale
FreeLibrary
lstrcpynA
VirtualFree
WideCharToMultiByte
LocalReAlloc
HeapFree
LockResource
VirtualAllocEx
CreateEventA
FindResourceA
GetLocalTime
GetFileAttributesA
Sleep
lstrcpyA
RaiseException
MoveFileExA
GetLastError
LocalFree
GetProcAddress
FormatMessageA
GetTickCount
GetDiskFreeSpaceA
GetOEMCP
ReadFile
VirtualAlloc
CloseHandle
EnumCalendarInfoA
GetCurrentThread
lstrcmpA
GlobalAlloc
GetCommandLineA
GetCurrentProcess
GetSystemDefaultLangID
CreateThread
GetModuleFileNameA
GlobalAddAtomA
HeapAlloc
GetCurrentProcessId
EnterCriticalSection
GlobalFindAtomA
GetModuleHandleA

Sections

.text
Size: 109KB - Virtual size: 108KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d92b7129ea815c4a02f562acf937dfde

Headers

File Characteristics

Imports

user32

msvcrt

comctl32

kernel32

Sections

.text Size: 109KB - Virtual size: 108KB

.data Size: 4KB - Virtual size: 4KB

.bss Size: 8KB - Virtual size: 8KB

.text
Size: 109KB - Virtual size: 108KB

.data
Size: 4KB - Virtual size: 4KB

.bss
Size: 8KB - Virtual size: 8KB