2ddea7b048af7d3cf1bc7e97b54fa38e

Sharing

Copy URL Twitter E-mail

General

Target

2ddea7b048af7d3cf1bc7e97b54fa38e
Size

129KB
MD5

2ddea7b048af7d3cf1bc7e97b54fa38e
SHA1

174c633cbf89d6f901325dc5907a77866098c98e
SHA256

d4727e673807138d52dc9b224749c0132d241322615983dbf61742b59a946a8e
SHA512

d3b7ea83bf1e51a4f614ce420c1d3e29190a14ed943f1f19446a1260bd2a75fe411e1e6b4a9f493aad372e2694797ccc5c428e286da670b35d1551d0e90a1301
SSDEEP

3072:X9P1+KtcQNgkwV1to1gaPHyZbX43YjDAsuCLWgL9iL:aQDgvto1gaPyB432z5L9m

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2ddea7b048af7d3cf1bc7e97b54fa38e

Files

2ddea7b048af7d3cf1bc7e97b54fa38e
.exe windows:4 windows x86 arch:x86

2240972acd7a00266ecedd2ead483764

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrlenW
InitializeCriticalSection
ExitProcess
GetCurrentProcessId
LoadLibraryA
SetThreadLocale
LocalReAlloc
CreateEventA
GetFileType
LoadLibraryExA
GetModuleHandleW
SetErrorMode
GetStringTypeA
FreeLibrary
VirtualFree
lstrlenA
GetCurrentThread
GetThreadLocale
GetTickCount
VirtualAlloc
IsBadReadPtr
VirtualQuery
WideCharToMultiByte

user32

GetWindowThreadProcessId
GetMenuItemID
IsChild
SetScrollPos
GetDCEx
DrawEdge
DrawFrameControl
GetCursorPos
FillRect
GetIconInfo
SetScrollRange
GetSystemMenu
EmptyClipboard
GetKeyState
GetMenuState
GetKeyboardLayoutList
InvalidateRect
DrawMenuBar
PtInRect
CallWindowProcA
GetPropA
TranslateMessage
SetRect
IsWindowUnicode
IsWindowEnabled
ReleaseDC
AdjustWindowRectEx
TranslateMDISysAccel
SetMenu
DefWindowProcA
WindowFromPoint
GetClassNameA
OpenClipboard
CreateMenu
SetWindowLongW
SetMenuItemInfoA
InflateRect
PostMessageA
DestroyIcon
GetMenuItemCount
LoadIconA
MessageBeep
RedrawWindow
MessageBoxA
GetTopWindow
OffsetRect
RemovePropA
SetWindowsHookExA
CreateWindowExA
ReleaseCapture
IsRectEmpty
GetMenuStringA
MapWindowPoints
CharNextW
IsDialogMessageW
EndDialog
SetClassLongA
ShowScrollBar
UnregisterClassA
EnableWindow
GetMenu
PeekMessageW
ActivateKeyboardLayout
DispatchMessageW
KillTimer
GetWindowRect
GetDesktopWindow
SetWindowPos
GetKeyboardLayout
GetDC
EnableScrollBar
ScrollWindow
CheckMenuItem
InsertMenuItemA
DestroyWindow
GetFocus
ShowWindow
IsWindow
IsMenu
GetParent
IsIconic
CharNextA
DrawAnimatedRects
GetKeyboardLayoutNameA
GetKeyNameTextA
EqualRect
IsDialogMessageA
EnumThreadWindows
SetFocus
GetWindowLongW
ChildWindowFromPoint
ScreenToClient
DeleteMenu
GetClassInfoA
IsWindowVisible
GetClipboardData
RemoveMenu
CallNextHookEx
MapVirtualKeyA
GetWindowDC
LoadCursorA
SendMessageW
DispatchMessageA
PeekMessageA
GetForegroundWindow
CharLowerBuffA
DestroyCursor
GetSubMenu
SetTimer
SetPropA
ClientToScreen
GetLastActivePopup
IsCharLowerA

comdlg32

GetOpenFileNameA
FindTextA
ChooseColorA
GetSaveFileNameA

gdi32

SetBkColor
GetDIBColorTable
GetPaletteEntries
GetDCOrgEx
CreateDIBitmap
CreatePenIndirect
GetCurrentPositionEx
SaveDC
CreateBitmap

shlwapi

SHGetValueA

Exports

Exports

_qKT2nlpSfGvZJ@20
_7QoWgByOAgLa
cII49c
AMoGgQKc@12
_1MVV4

Sections

.text
Size: 9KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 96KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 113KB - Virtual size: 116KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2240972acd7a00266ecedd2ead483764

Headers

File Characteristics

Imports

kernel32

user32

comdlg32

gdi32

shlwapi

Exports

Exports

Sections

.text Size: 9KB - Virtual size: 12KB

.rdata Size: 4KB - Virtual size: 96KB

.data Size: 113KB - Virtual size: 116KB

.rsrc Size: 1024B - Virtual size: 4KB

.text
Size: 9KB - Virtual size: 12KB

.rdata
Size: 4KB - Virtual size: 96KB

.data
Size: 113KB - Virtual size: 116KB

.rsrc
Size: 1024B - Virtual size: 4KB