2069c60e8d8e9c6baed00cab9160ae1a

Sharing

Copy URL Twitter E-mail

General

Target

2069c60e8d8e9c6baed00cab9160ae1a
Size

219KB
MD5

2069c60e8d8e9c6baed00cab9160ae1a
SHA1

8e8cfa2fb54fb956c987557688814adeeb9fa0b5
SHA256

a21c3e5973d849a6f6230ffa8f532d1688b06cbd5f3d317effcdef58ce6041fd
SHA512

3a01174daab022b2f6e3a04247b5137fdcda0230261afc2090781da3dfdd7f5eb318175506c6aa8481e525a3882b7ab78c9bf92013104f58250a2b3e79893448
SSDEEP

6144:PXtcMTJusAekFQ13IycnXYRiUkjpSyESM:vafpQ13IyoYRiUsMyK

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2069c60e8d8e9c6baed00cab9160ae1a

Files

2069c60e8d8e9c6baed00cab9160ae1a
.dll windows:4 windows x86 arch:x86

8ec8262af04d1e00a15c79205d2983ed

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

advapi32

RegLoadKeyA

comctl32

ImageList_DragShowNolock
ImageList_Add
ImageList_GetBkColor
ImageList_Read
ImageList_Draw
ImageList_Remove
ImageList_Write
ImageList_Destroy
ImageList_DrawEx

comdlg32

GetOpenFileNameA
ChooseColorA
GetSaveFileNameA
FindTextA

ntdll

NtWaitForSingleObject

kernel32

GetEnvironmentStrings
GetStdHandle
VirtualFree
LocalReAlloc
GetProcAddress
ReadFile
GetDiskFreeSpaceA
GetStringTypeA
EnumCalendarInfoA
VirtualAllocEx
LocalAlloc
WriteFile
GetModuleHandleA
MulDiv
GetACP
HeapFree
FindClose
SetFilePointer
LockResource
SetThreadLocale
GetCurrentThreadId
GetVersion
MoveFileExA
HeapDestroy
RaiseException
WaitForSingleObject
VirtualQuery
SetEvent
lstrcpyA
FindFirstFileA
LoadResource
GetLocalTime
GetThreadLocale
WideCharToMultiByte
lstrcmpiA
VirtualAlloc
GetDateFormatA
LocalFree
GlobalDeleteAtom
GetLocaleInfoA
lstrcatA
SetErrorMode
ExitThread
GetLastError
GetCurrentProcess
GetFullPathNameA
HeapAlloc
GetUserDefaultLCID
FindResourceA
GetFileSize
GetCurrentProcessId
GlobalFindAtomA
GetCPInfo
SetEndOfFile
GetModuleFileNameA
GetStartupInfoA
GetTickCount
SizeofResource
LoadLibraryExA
GetFileAttributesA
SetHandleCount
GetVersionExA
ResetEvent
GetOEMCP
lstrcmpA
EnterCriticalSection
LoadLibraryA
lstrlenA
GetCommandLineA
DeleteCriticalSection
FreeResource
SetLastError
GetSystemDefaultLangID
CloseHandle
Sleep
GlobalAlloc
FormatMessageA
GlobalAddAtomA
CompareStringA
ExitProcess
InitializeCriticalSection
GetFileType
CreateFileA
lstrcpynA
MoveFileA

user32

DispatchMessageA
FillRect
SetWindowTextA
DispatchMessageW
GetActiveWindow
DefFrameProcA
GetScrollInfo
GetCursorPos
GetDCEx
IsChild
FindWindowA
SetWindowPos
GetWindowTextA
GetMenuItemID
DefWindowProcA
IsWindowEnabled
EndDeferWindowPos
DrawTextA
IsMenu
GetKeyNameTextA
GetParent
RegisterClassA
CharNextA
GetScrollRange
CreateWindowExA
GetClassLongA
SetWindowLongA
SystemParametersInfoA
EnableMenuItem
GetDC
DrawFrameControl
GetClientRect
DefMDIChildProcA
EnumThreadWindows
CreateIcon
GetWindow
GetMenuState
EnumChildWindows
CreatePopupMenu
GetSysColorBrush
EnableWindow
GetMenuStringA
GetCursor
EqualRect
GetDlgItem
GetClassInfoA
GetMenu
CharLowerBuffA
CharToOemA
GetFocus
EnableScrollBar
BeginPaint
EnumWindows
ClientToScreen
GetClipboardData
BeginDeferWindowPos
GetKeyState
GetDesktopWindow
MessageBoxA
HideCaret
GetSysColor
IsWindowVisible
GetScrollPos
GetCapture
GetMenuItemCount
DrawEdge
CreateMenu
ShowWindow
CheckMenuItem
SetCursor
GetLastActivePopup
GetMenuItemInfoA
DrawIcon
GetPropA
CallNextHookEx

msvcrt

log
memmove
sqrt
abs
clock
strlen
exp
pow
malloc
ceil
memcpy
strncmp
calloc
wcsncmp
swprintf
atol
wcschr

version

VerFindFileA

Sections

.text
Size: 46KB - Virtual size: 46KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 168KB - Virtual size: 263KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

INIT
Size: 1024B - Virtual size: 613B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8ec8262af04d1e00a15c79205d2983ed

Headers

File Characteristics

Imports

advapi32

comctl32

comdlg32

ntdll

kernel32

user32

msvcrt

version

Sections

.text Size: 46KB - Virtual size: 46KB

.data Size: 168KB - Virtual size: 263KB

INIT Size: 1024B - Virtual size: 613B

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 46KB - Virtual size: 46KB

.data
Size: 168KB - Virtual size: 263KB

INIT
Size: 1024B - Virtual size: 613B

.reloc
Size: 2KB - Virtual size: 1KB