1900fd44cb02b182cc2e172a55e835f4

Sharing

Copy URL

Twitter E-mail

General

Target

1900fd44cb02b182cc2e172a55e835f4
Size

172KB
MD5

1900fd44cb02b182cc2e172a55e835f4
SHA1

23bdbd00e38dea8f203fadb849d10a69379fc25f
SHA256

e3fc3dcfd11bba88ff5df3471741b31648c5c1fe6607fe5fea7f9c185354dee3
SHA512

12b3a321ffd45e60390f25dc45cf79b4a0b5d3c4b0e01359a0c13873bb5a514fc13ad8e4a78aec6b59bab3b14a42372895273025199a1e87f7040673797bc24f
SSDEEP

3072:UMQccgI2Lk+PPfNYzJBpBXrqo7aepyVIVCJqApSYIXsLevAXDJj0jvoYB:UMQcEKPf4BPXrvaNVIVEDpSmVDJjX2

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1900fd44cb02b182cc2e172a55e835f4

Files

1900fd44cb02b182cc2e172a55e835f4
.dll windows:4 windows x86 arch:x86

3cf727f453b38edb4f5204e44f64b49e

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

user32

GetWindowLongW
SetWindowPlacement
GetSysColorBrush
CharUpperBuffA
KillTimer
TranslateMDISysAccel
PtInRect
GetWindowRect
GetWindowTextLengthA
SetClipboardData
DestroyIcon
GetWindowPlacement
DispatchMessageA
InflateRect
GetKeyboardLayoutNameA
GetMenuItemCount
DeleteMenu
LoadBitmapA
MessageBeep
ShowScrollBar
SetWindowLongW
RegisterWindowMessageA
FindWindowA
CloseClipboard
PostMessageA
SetForegroundWindow
OpenClipboard
RemoveMenu
EnableScrollBar
SetPropA
IsCharUpperA
GetKeyboardState
TrackPopupMenu
IsWindowUnicode
IsIconic
ScreenToClient
LoadStringA
IsRectEmpty
EnumChildWindows
OffsetRect
IntersectRect
EmptyClipboard
SendMessageA
CheckMenuItem
SetScrollPos
OemToCharA
PostQuitMessage
FrameRect
GetCapture
SetRect
DrawIconEx
BeginPaint
OpenIcon
ReleaseDC
GetLastActivePopup
CharNextW
ReleaseCapture
IsWindowEnabled
CharLowerA
DefFrameProcA
InsertMenuItemA
SetClassLongA
RemovePropA
WindowFromPoint
DefWindowProcA
GetWindowThreadProcessId
MapVirtualKeyA
GetMenuItemInfoA
PeekMessageW
IsWindow
GetFocus
SetActiveWindow
GetScrollPos
SetCursor
GetSysColor
SetScrollInfo
TranslateMessage
DestroyWindow
GetParent
GetKeyboardLayoutList
GetClassLongA
GetCursorPos
UnregisterClassA
MessageBoxA
GetIconInfo
SetFocus
EnumThreadWindows
EndDialog
GetClassNameA
ChildWindowFromPoint
EnableMenuItem
IsWindowVisible

version

VerQueryValueA
GetFileVersionInfoSizeA

gdi32

GetBkMode
GetBkColor
CreateBitmap

comctl32

ImageList_DrawEx
ImageList_DragShowNolock
ImageList_Create
ImageList_Add
ImageList_Read
ImageList_Destroy
ImageList_Draw
ImageList_GetBkColor
ImageList_Remove

shell32

SHFileOperationA
Shell_NotifyIconA
SHGetDiskFreeSpaceA
SHGetDesktopFolder
Shell_NotifyIconW

oleaut32

RegisterTypeLib
GetErrorInfo
SysFreeString
SafeArrayGetUBound
SafeArrayGetElement
SafeArrayCreate
VariantChangeType
SysStringLen
SysReAllocStringLen

kernel32

LoadLibraryA
GlobalAlloc
GetACP
GetModuleHandleA
GetCPInfo
lstrlenA
FreeResource
GetOEMCP
VirtualAllocEx
ExitProcess

advapi32

RegOpenKeyExA

shlwapi

SHQueryValueExA
SHDeleteValueA

comdlg32

GetOpenFileNameA
GetSaveFileNameA

Exports

Exports

S5zVUi8a@12

Sections

.text
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 151KB - Virtual size: 302KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3cf727f453b38edb4f5204e44f64b49e

Headers

File Characteristics

Imports

user32

version

gdi32

comctl32

shell32

oleaut32

kernel32

advapi32

shlwapi

comdlg32

Exports

Exports

Sections

.text Size: 8KB - Virtual size: 8KB

.rdata Size: 4KB - Virtual size: 4KB

.data Size: 151KB - Virtual size: 302KB

.rsrc Size: 5KB - Virtual size: 4KB

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 8KB - Virtual size: 8KB

.rdata
Size: 4KB - Virtual size: 4KB

.data
Size: 151KB - Virtual size: 302KB

.rsrc
Size: 5KB - Virtual size: 4KB

.reloc
Size: 2KB - Virtual size: 1KB