3478a43c06cbc4807847b630b4654839

Sharing

Copy URL

Twitter E-mail

General

Target

3478a43c06cbc4807847b630b4654839
Size

141KB
MD5

3478a43c06cbc4807847b630b4654839
SHA1

baf142363f8e24eda5bce5e3baa7a65af5457cd3
SHA256

e384372076a01342b57a8b04f4e961cc37e6a78e9a39362d8f938fbaf8e6cf7e
SHA512

4433e8858091aedf198a2c191e343e49842ae46b29cfb97b6fac0ebc422804539647d4253a9e08cb7c5f214e3e13f914039d5b1bc1c0106c8633baf0fcf185e8
SSDEEP

1536:zDVS0kyVthBLDdgWn7n7d4uaxqf+bgaT/SNGKUBp0:zDVSP8thdDdgWn7n7d4bxbgaT/UGKY

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3478a43c06cbc4807847b630b4654839

Files

3478a43c06cbc4807847b630b4654839
.exe windows:4 windows x86 arch:x86

7509df6c3908951dcc1931c125b47f60

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
LoadLibraryA
GlobalReAlloc
FreeLibrary
GetTickCount
lstrcmpiA
GlobalAlloc
GlobalLock
FindNextFileA
GlobalUnlock
GlobalFree
GetWindowsDirectoryA
GetModuleFileNameA
GetPrivateProfileIntA
WritePrivateProfileStringA
GetPrivateProfileStringA
FindFirstFileA
MulDiv
ExitProcess
LCMapStringW
TerminateProcess
WideCharToMultiByte
MultiByteToWideChar
LCMapStringA
HeapFree
GetVersion
HeapAlloc
GetStartupInfoA
GetModuleHandleA
GetCommandLineA
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetCurrentProcess
GetEnvironmentStrings
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetACP
GetOEMCP
GetCPInfo
GetStdHandle
GetFileType
SetHandleCount
HeapCreate
VirtualFree
HeapDestroy
WriteFile
GetStringTypeA
RtlUnwind
GetLastError
SetFilePointer
GetStringTypeW
SetStdHandle
FlushFileBuffers
VirtualAlloc
lstrcpyA
lstrlenA
CloseHandle

user32

DestroyMenu
RemoveMenu
CreateMenu
EndPaint
wsprintfA
SetFocus
SendMessageA
GetWindowRect
ScreenToClient
CreateDialogParamA
GetMenu
InsertMenuA
DestroyWindow
MessageBoxA
InvalidateRect
GetKeyboardState
MapVirtualKeyA
PostMessageA
SetKeyboardState
ValidateRect
GetKeyState
EnableWindow
SetWindowTextA
GetDC
BeginPaint
EndDialog
SetDlgItemInt
AppendMenuA
GetSubMenu
GetActiveWindow
GetMenuState
CheckMenuItem
GetFocus
LoadBitmapA
GetWindowTextA
PostQuitMessage
TrackPopupMenu
GetClientRect
GetCursorPos
DefWindowProcA
DialogBoxParamA
WinHelpA
SetWindowPos
GetWindowDC
EnableMenuItem
RegisterClassA
LoadIconA
LoadCursorA
UpdateWindow
GetSystemMetrics
CreateWindowExA
IsDialogMessageA
GetMessageA
PeekMessageA
CheckDlgButton
TranslateMessage
DispatchMessageA
GetDlgItem
ShowWindow
SendDlgItemMessageA
GetDlgItemTextA
DrawTextA
ReleaseDC

gdi32

DeleteObject
LineTo
EnumFontFamiliesA
MoveToEx
GetObjectA
SetTextCharacterExtra
GetTextCharacterExtra
SetTextColor
GetTextExtentPointA
RoundRect
PatBlt
SetWindowOrgEx
Escape
CreatePen
GetDeviceCaps
TextOutA
CreateFontIndirectA
SelectObject
GetStockObject
BitBlt
CreateCompatibleDC
SetBkMode
DeleteDC

comdlg32

GetOpenFileNameA
PrintDlgA

winkbdrv

_SetRomanEOAccent
SetAvailScripts
Winkbdrv_Entry
SetDefAppCategory
SetSwitchKey
_AI
_MS
_HYP
ascii2iscii_init
MSWordIsGettingInputFocus
LeapEnable
FontDlgProc
_AS
_RMN
SetDualFont
SetConverter1
_LKT
ascii2iscii_convert_str
_A2I
_SCL

Exports

Exports

AboutDlgProc
KbdHelpDlgProc
MainWndProc
PrintAbortDlg
PrintAbortLoop
PrintSetup

Sections

.text
Size: 43KB - Virtual size: 43KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 19KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 72KB - Virtual size: 92KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

7509df6c3908951dcc1931c125b47f60

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

winkbdrv

Exports

Exports

Sections

.text Size: 43KB - Virtual size: 43KB

.rdata Size: 1KB - Virtual size: 1KB

.data Size: 19KB - Virtual size: 34KB

.idata Size: 4KB - Virtual size: 4KB

.rsrc Size: 72KB - Virtual size: 92KB

.text
Size: 43KB - Virtual size: 43KB

.rdata
Size: 1KB - Virtual size: 1KB

.data
Size: 19KB - Virtual size: 34KB

.idata
Size: 4KB - Virtual size: 4KB

.rsrc
Size: 72KB - Virtual size: 92KB