2b51a50d57404a924929ff0fa27f9f96

Sharing

Copy URL Twitter E-mail

General

Target

2b51a50d57404a924929ff0fa27f9f96
Size

232KB
MD5

2b51a50d57404a924929ff0fa27f9f96
SHA1

aedc40ace31b28c676452d5d410ca835ae09a890
SHA256

7b971357afbf37d6a66022e2d8516508e0b56b52222a08bc4e902873f0bec7c7
SHA512

734fb9ed372a154489faf60a0fb1c0abe3b8b662f52f8ccf3f69756db52f0f4311c41c2aeb0242f0bfda1724747130f9615d2c3b1d5394f6ddfb49a25901307d
SSDEEP

6144:b5adva4YVwueUSbdmjy1TmM2jHJA0w0EEt7:b5aQ9VwueU1mmHHJA0wTE9

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2b51a50d57404a924929ff0fa27f9f96

Files

2b51a50d57404a924929ff0fa27f9f96
.exe windows:4 windows x86 arch:x86

21c884a794ce19fa0e99fe05b2c9932f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualAlloc
ExitThread
CreateFileA
SetHandleCount
FindFirstFileA
GetStringTypeW
LoadLibraryExA
GetModuleHandleA
GetLocaleInfoA
GetCommandLineA
GetACP
GetVersionExA
GetProcAddress
lstrlenA
GetCommandLineW
ExitProcess
SetErrorMode
IsBadReadPtr
WideCharToMultiByte
GetModuleHandleW
LoadLibraryA

user32

CloseClipboard
GetCapture
PeekMessageA
RegisterClassA
FindWindowA
GetClassLongA
GetDesktopWindow
GetDlgItem
GetClassNameA
GetWindowLongA
SetWindowPlacement
DestroyIcon
SetClipboardData
GetKeyboardState
SetScrollPos
RemovePropA
CreateIcon
SetWindowLongA
GetTopWindow
GetKeyNameTextA
DrawFrameControl
GetForegroundWindow
GetKeyboardType
CharLowerBuffA
EnumWindows
GetWindowRect
GetSystemMenu
GetScrollRange
ShowScrollBar
GetSysColorBrush
ScrollWindow
GetKeyboardLayout
GetWindowPlacement
UnregisterClassA
GetMessagePos
MapVirtualKeyA
BeginPaint
EnableScrollBar
IsWindowVisible
GetCursor
GetWindowLongW
GetClipboardData
CharNextW
ShowOwnedPopups
CharLowerA
SetParent
SetPropA
MessageBoxA
GetMenuStringA
GetScrollInfo
CheckMenuItem
LoadCursorA
DefFrameProcA
GetParent
GetLastActivePopup
GetMenuState
FillRect
GetWindowTextA
CharToOemA
GetSysColor
IsRectEmpty
SetWindowLongW
PostMessageA
CharNextA
ScreenToClient
DeleteMenu
PostQuitMessage
MapWindowPoints
SetRect
IntersectRect
OemToCharA
InvalidateRect
DrawTextA
TrackPopupMenu
EndPaint
DrawEdge
InflateRect
TranslateMessage
SetCursor
DrawIcon
DrawIconEx
DestroyMenu
GetMenuItemCount
ClientToScreen
SetMenuItemInfoA
SetFocus
GetMenuItemID
MessageBeep
RedrawWindow
SetForegroundWindow
EnumThreadWindows
IsWindow
GetMenu
ReleaseCapture
GetMenuItemInfoA
SendMessageW
CharUpperBuffA
GetClientRect
SetActiveWindow
IsDialogMessageW
IsDialogMessageA
PeekMessageW
CreateMenu
TranslateMDISysAccel
UnhookWindowsHookEx
CallWindowProcA
EqualRect
GetWindowThreadProcessId
SetTimer
InsertMenuItemA
EnableMenuItem
DefWindowProcA
ChildWindowFromPoint
GetDC
KillTimer
GetPropA
DispatchMessageW
SystemParametersInfoA
RegisterWindowMessageA
SetWindowsHookExA
GetKeyboardLayoutList
DrawMenuBar
EnableWindow
DefMDIChildProcA
LoadIconA
GetWindow
SetClassLongA
GetCursorPos
SetScrollRange
LoadKeyboardLayoutA
GetKeyboardLayoutNameA
EnumChildWindows
SetMenu
GetWindowDC
IsWindowEnabled
RemoveMenu
SetCapture
GetFocus
LoadStringA
SetWindowTextA
DestroyWindow
IsWindowUnicode
InsertMenuA

gdi32

GetCurrentPositionEx
CreateBitmap
SetTextColor
SetBkColor
GetPaletteEntries
GetDIBColorTable
GetDIBits
GetObjectA
BitBlt
GetDCOrgEx

comdlg32

FindTextA
GetSaveFileNameA

shell32

DragQueryFileA
SHGetFileInfoA
Shell_NotifyIconA

Sections

CODE
Size: 71KB - Virtual size: 70KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 148KB - Virtual size: 147KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc2
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc6
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc4
Size: 1024B - Virtual size: 589B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc0
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc7
Size: 1024B - Virtual size: 666B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 984B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

21c884a794ce19fa0e99fe05b2c9932f

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

shell32

Sections

CODE Size: 71KB - Virtual size: 70KB

.data Size: 148KB - Virtual size: 147KB

.rsrc2 Size: 6KB - Virtual size: 6KB

.rsrc6 Size: 1KB - Virtual size: 1KB

.rsrc4 Size: 1024B - Virtual size: 589B

.rsrc0 Size: 1KB - Virtual size: 1KB

.rsrc7 Size: 1024B - Virtual size: 666B

.rsrc Size: 1024B - Virtual size: 984B

CODE
Size: 71KB - Virtual size: 70KB

.data
Size: 148KB - Virtual size: 147KB

.rsrc2
Size: 6KB - Virtual size: 6KB

.rsrc6
Size: 1KB - Virtual size: 1KB

.rsrc4
Size: 1024B - Virtual size: 589B

.rsrc0
Size: 1KB - Virtual size: 1KB

.rsrc7
Size: 1024B - Virtual size: 666B

.rsrc
Size: 1024B - Virtual size: 984B