316b0e583388fd4c21be96b5247d68dc

Sharing

Copy URL Twitter E-mail

General

Target

316b0e583388fd4c21be96b5247d68dc
Size

123KB
MD5

316b0e583388fd4c21be96b5247d68dc
SHA1

f82e766577caa887b2b2442f357a2047216bc818
SHA256

dc0b011cf69ca824e7f81c518cbd56ef2f502761f3ab7ae6983d760d816d6d2a
SHA512

60f7c85abd6aeff45cbe18f5a586cee1f4682934f67bc6e8d2a0eb7614c546f001c2cc3eef322a0304caffe166a44f4087742a6ca2edaf048ac7667f952b0c4c
SSDEEP

3072:jhIF+RD3nN9E6oVQWsmFfwbTRcjjVuWiXWyH4XO9BsCJE1Bl6diMzi:jmcrnN9EXbsmFRppxOUbjqiM

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
316b0e583388fd4c21be96b5247d68dc

Files

316b0e583388fd4c21be96b5247d68dc
.exe windows:4 windows x86 arch:x86

52032ce956aa925043666ca68e33f242

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

WaitMessage
GetKeyboardType
GetKeyboardState
DrawEdge
ShowScrollBar
GetActiveWindow
GetKeyboardLayout
GetFocus
DefFrameProcA
GetKeyNameTextA
IsMenu
SetScrollPos
UnregisterClassA
FillRect
GetCapture
CharNextA
GetTopWindow
CreatePopupMenu
OemToCharA
SetForegroundWindow
SetWindowPlacement
DefWindowProcA
DrawIconEx
OpenIcon
EndDialog
ReleaseDC
DrawTextA
CreateWindowExA
GetDesktopWindow
CreateIcon
MsgWaitForMultipleObjects
CharUpperBuffA
IsIconic
DrawMenuBar
ShowWindow
GetKeyboardLayoutList
TranslateMDISysAccel
IsChild
EnumThreadWindows
InvalidateRect
IntersectRect
ClientToScreen
SetClassLongA
GetMenu
CharLowerBuffA
EnumWindows
GetParent
LoadKeyboardLayoutA
SetCapture
GetDC
EmptyClipboard
FrameRect
IsWindowEnabled
SetScrollInfo
EnableMenuItem
IsWindowVisible
PeekMessageA
IsDialogMessageA
DispatchMessageA
CharUpperA
SetWindowLongA
ActivateKeyboardLayout
GetIconInfo
MoveWindow
RegisterWindowMessageA

gdi32

CreateBitmap
GetTextColor
LineTo
CreateDIBSection
GetTextAlign

comctl32

ImageList_Draw
ImageList_GetBkColor
ImageList_Add
ImageList_Create
ImageList_DrawEx
ImageList_Remove

kernel32

InitializeCriticalSection
EnumCalendarInfoA
WideCharToMultiByte
GetModuleHandleA
GetEnvironmentStrings
ReadFile
GetThreadLocale
GetVersionExA
GetLocalTime
SetFilePointer
lstrlenW
MulDiv
LocalAlloc
GetProcessHeap
EnterCriticalSection
CompareStringA
ExitProcess
GetCurrentThread
IsBadReadPtr
lstrcpynA
SetEndOfFile
GetStdHandle
GetFullPathNameA
GetDiskFreeSpaceA
FormatMessageA
GetCurrentProcessId
DeleteCriticalSection
DeleteFileA
GlobalDeleteAtom
SetErrorMode
GetModuleHandleW
GetCurrentProcess
FreeResource
GetACP
CreateEventA
GetFileSize
GetTickCount
GetStartupInfoA
GetStringTypeA
GlobalFindAtomA
GlobalAlloc
GetTempPathA
lstrcatA
VirtualAlloc
LockResource
GlobalAddAtomA
VirtualAllocEx
CreateFileA
lstrcmpA
LoadLibraryA
HeapFree
SetThreadLocale
GetFileType
GetDateFormatA
LocalReAlloc
GetLocaleInfoA
WriteFile
FindFirstFileA
MoveFileA
GetFileAttributesA
FreeLibrary
GetCurrentThreadId
ExitThread

Exports

Exports

_hqwhcv80

Sections

.text
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 105KB - Virtual size: 237KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

52032ce956aa925043666ca68e33f242

Headers

File Characteristics

Imports

user32

gdi32

comctl32

kernel32

Exports

Exports

Sections

.text Size: 10KB - Virtual size: 10KB

.rdata Size: 3KB - Virtual size: 3KB

.data Size: 105KB - Virtual size: 237KB

.rsrc Size: 2KB - Virtual size: 1KB

.text
Size: 10KB - Virtual size: 10KB

.rdata
Size: 3KB - Virtual size: 3KB

.data
Size: 105KB - Virtual size: 237KB

.rsrc
Size: 2KB - Virtual size: 1KB