346a3cff3f9ef1234839f0852563c08b

Sharing

Copy URL Twitter E-mail

General

Target

346a3cff3f9ef1234839f0852563c08b
Size

207KB
MD5

346a3cff3f9ef1234839f0852563c08b
SHA1

71e7d13f8d4e0e5dbfa874a657f2137ba127ab2f
SHA256

6967eed5093441eef19c8e168e104a33f1f2fd9830a5dd939cda263e3ebb46d0
SHA512

86263bbf619848584e164cb47fcdae6e15a7929a554af19a4bbe7700eacacb61522945cd8f1f886296ee15208b9212b9f5332b1980f8928647683df40b4eb1ce
SSDEEP

3072:9k7bcbdnnyrzt3vbE1IlWV0900/e9JqvGb6NbCuTAEzM1Z4/0YBcu2mPduwEa:Vpwt/bGIlWVk0fExT01ys2gEe

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
346a3cff3f9ef1234839f0852563c08b

Files

346a3cff3f9ef1234839f0852563c08b
.exe windows:4 windows x86 arch:x86

449102504dfc1f687272e9010f097820

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

user32

InsertMenuItemA
GetPropA
DefMDIChildProcA
IsDialogMessageA
SetScrollPos
SetParent
LoadBitmapA
CreateIcon
GetSysColorBrush
SetWindowPos
AdjustWindowRectEx
DrawTextA
DeleteMenu
SetRect
LoadIconA
CharNextA
CreateWindowExA
TranslateMessage
InsertMenuA
GetDesktopWindow
SendMessageW
InflateRect
GetWindowRect
GetWindowLongA
PostQuitMessage
FindWindowA
UnhookWindowsHookEx
CharLowerA
GetForegroundWindow
PeekMessageW
CreatePopupMenu
IntersectRect
DestroyWindow
GetDCEx
GetCursor
DrawIcon
GetDC
GetCapture
MapVirtualKeyA
UnregisterClassA
ShowWindow
CreateMenu
SendMessageA
GetKeyState
GetWindowDC
ReleaseCapture
FillRect
IsChild
GetWindowThreadProcessId
IsWindowEnabled
CheckMenuItem
RegisterClassA
RemoveMenu
GetLastActivePopup
GetClassLongA
EndPaint
LoadKeyboardLayoutA
IsWindowVisible
DrawFrameControl
DrawEdge
GetActiveWindow
EnableMenuItem
SetMenu
LoadCursorA
IsZoomed
DefFrameProcA
DrawMenuBar
GetKeyboardLayoutList
ScreenToClient
ReleaseDC
ClientToScreen
SetWindowsHookExA

gdi32

CreatePalette
GetObjectA
GetBitmapBits
RestoreDC
GetDCOrgEx
LineTo

comctl32

ImageList_Destroy
ImageList_DrawEx
ImageList_DragShowNolock
ImageList_Draw
ImageList_Write
ImageList_Add

shell32

SHGetDesktopFolder
SHFileOperationA

kernel32

ExitThread
IsBadReadPtr
GlobalAlloc
GetCommandLineW
GetACP
GetModuleHandleA
GetLastError
LoadLibraryA
GetProcAddress
VirtualAllocEx
VirtualAlloc
ExitProcess
lstrlenA
GetCommandLineA

Sections

.text
Size: 64KB - Virtual size: 64KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 1024B - Virtual size: 596B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.RSRC6
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.RSRC0
Size: 131KB - Virtual size: 143KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.RSRC5
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.RSRC7
Size: 512B - Virtual size: 3B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.RSRC4
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 992B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

449102504dfc1f687272e9010f097820

Headers

File Characteristics

Imports

user32

gdi32

comctl32

shell32

kernel32

Sections

.text Size: 64KB - Virtual size: 64KB

DATA Size: 1024B - Virtual size: 596B

.RSRC6 Size: 2KB - Virtual size: 1KB

.RSRC0 Size: 131KB - Virtual size: 143KB

.RSRC5 Size: 4KB - Virtual size: 3KB

.RSRC7 Size: 512B - Virtual size: 3B

.RSRC4 Size: 1KB - Virtual size: 1KB

.rsrc Size: 1024B - Virtual size: 992B

.text
Size: 64KB - Virtual size: 64KB

DATA
Size: 1024B - Virtual size: 596B

.RSRC6
Size: 2KB - Virtual size: 1KB

.RSRC0
Size: 131KB - Virtual size: 143KB

.RSRC5
Size: 4KB - Virtual size: 3KB

.RSRC7
Size: 512B - Virtual size: 3B

.RSRC4
Size: 1KB - Virtual size: 1KB

.rsrc
Size: 1024B - Virtual size: 992B