33cba9391b4f65949b891ddd2c24741f

Sharing

Copy URL Twitter E-mail

General

Target

33cba9391b4f65949b891ddd2c24741f
Size

164KB
MD5

33cba9391b4f65949b891ddd2c24741f
SHA1

d3b87b2176c84f442b42329b4ad16b264503a781
SHA256

6dc018100c2139aea157fad7721dc1ed068c51ea55e0e24661f242b5ec3c731b
SHA512

3772184ad2f655b2f3789d9747f3eea0c11c600ca7d65fcb1cdd49c9ca32e4fcbdae58d0b5cded557388c7eb9ac867229f874186093fe19613f038a20f750fed
SSDEEP

3072:pkEh71VSLblyoYVaeaH6LoKRbIQn8Sqvz0C:L71VGc+Cl58/IC

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
33cba9391b4f65949b891ddd2c24741f

Files

33cba9391b4f65949b891ddd2c24741f
.exe windows:4 windows x86 arch:x86

b783e60a2be4175c7f61abe63a83d8cd

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

IsDialogMessageA
LoadIconA
DispatchMessageA
TranslateMessage
GetMessageA
UpdateWindow
ShowWindow
CreateDialogParamA
MessageBoxA
FindWindowA
SendMessageA
GetDesktopWindow
SetCursor
ShowCursor
SetWindowTextA
GetDlgItem
PostMessageA
PostQuitMessage
DefWindowProcA
DestroyWindow
GetDlgItemTextA
EndDialog
DialogBoxParamA
IsDlgButtonChecked
RegisterClassA
LoadCursorA

advapi32

RegDeleteValueA
RegOpenKeyExA
RegEnumKeyExA
RegQueryValueExA
RegDeleteKeyA
RegCloseKey

shell32

SHGetSpecialFolderPathA

setupapi

SetupDiGetClassDevsA
SetupDiEnumDeviceInfo
SetupDiGetDeviceRegistryPropertyA
SetupDiRemoveDevice
SetupDiDestroyDeviceInfoList

mscms

GetColorDirectoryA

kernel32

MoveFileA
LocalAlloc
RemoveDirectoryA
GetLastError
GetStringTypeA
LCMapStringW
LCMapStringA
MultiByteToWideChar
SetEndOfFile
SetFilePointer
LoadLibraryA
GetProcAddress
GetOEMCP
GetACP
GetCPInfo
CreateFileA
ReadFile
FlushFileBuffers
SetStdHandle
HeapReAlloc
VirtualAlloc
HeapAlloc
WriteFile
RtlUnwind
VirtualFree
HeapCreate
LocalFree
HeapDestroy
GetEnvironmentStringsW
GetEnvironmentStrings
WideCharToMultiByte
FreeEnvironmentStringsW
FreeEnvironmentStringsA
GetModuleFileNameA
GetStringTypeW
GetSystemDirectoryA
GetTempPathA
lstrcpyA
lstrlenA
GetWindowsDirectoryA
lstrcatA
GetVersionExA
DeleteFileA
SetFileAttributesA
GetStdHandle
Sleep
UnhandledExceptionFilter
GetStartupInfoA
GetFileType
SetHandleCount
FindClose
FindNextFileA
FindFirstFileA
GetModuleHandleA
GetCommandLineA
GetVersion
ExitProcess
HeapFree
CloseHandle
TerminateProcess
GetCurrentProcess

Sections

.text
Size: 56KB - Virtual size: 54KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 16KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.vrdata
Size: 76KB - Virtual size: 76KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

b783e60a2be4175c7f61abe63a83d8cd

Headers

File Characteristics

Imports

user32

advapi32

shell32

setupapi

mscms

kernel32

Sections

.text Size: 56KB - Virtual size: 54KB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 16KB - Virtual size: 18KB

.rsrc Size: 8KB - Virtual size: 5KB

.vrdata Size: 76KB - Virtual size: 76KB

.text
Size: 56KB - Virtual size: 54KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 16KB - Virtual size: 18KB

.rsrc
Size: 8KB - Virtual size: 5KB

.vrdata
Size: 76KB - Virtual size: 76KB