33fa4f9d65b0cf3bc73f185660c53354

Sharing

Copy URL Twitter E-mail

General

Target

33fa4f9d65b0cf3bc73f185660c53354
Size

80KB
MD5

33fa4f9d65b0cf3bc73f185660c53354
SHA1

c8745f8b61d80fa6418666a83764527f90900542
SHA256

dc23e41d2753a2479fabc22d949998bfa3125ddd978ed05ff6c0ca3502676943
SHA512

c678eeddefa9ec7c7ab3a0fc6131eb922dd9b16fe829f847bd48de3d36403ddd1cafddc65d705c27d5de8c0cfcfead1df11728c247de4d270d3b06bc55921b66
SSDEEP

1536:7EdG9ooSXvERO7QoWJP6iGPn7C0/uLqn0aUUPxZRn7WKseFzEWAzn:fqoq0xoWJP61WO0i0a3Pxvn7hseqW

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
33fa4f9d65b0cf3bc73f185660c53354

Files

33fa4f9d65b0cf3bc73f185660c53354
.exe windows:4 windows x86 arch:x86

81cc98287bdf5eb1e83c65f4ea20b8d9

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetFilePointer
MapViewOfFile
GetModuleHandleA
DeviceIoControl
VirtualAlloc
GetFileInformationByHandle
GetSystemTime
HeapFree
GetTimeFormatW
DosDateTimeToFileTime
GetLastError
SystemTimeToFileTime
SetStdHandle
GetCommandLineA
GetTempFileNameW
GetProcAddress
lstrcpynW
GetCurrentProcessId
CreateFileW
LoadLibraryA
GlobalUnlock
VirtualAlloc
ExitProcess
Sleep
ReadFile
GetCurrentThread
GetVersionExA
GetCurrentThreadId
RtlUnwind
CreateProcessA
LoadLibraryA
InterlockedExchange
GetConsoleOutputCP
GetVolumeInformationW
CreateDirectoryA

msvcrt

__wgetmainargs
toupper
memmove
wcstol
_XcptFilter
__getmainargs
fprintf
_initterm
wcscpy
strchr
fflush
memcpy
iscntrl
_snwprintf
_wcsicmp
_vsnprintf
_wtoi
malloc
__CxxFrameHandler
_wtol
_exit
strncpy
_onexit
_except_handler3

user32

GetAsyncKeyState
BeginPaint
GetProcessWindowStation
DefWindowProcW
DefDlgProcW
CheckDlgButton
RedrawWindow
FillRect
SetForegroundWindow
LoadStringW
TranslateAcceleratorW
SetFocus
ShowWindow
SetWindowsHookExW
EnumThreadWindows
DestroyWindow
CheckMenuItem
CharUpperW
CopyRect
DrawTextW
IsWindow
GetActiveWindow
ReleaseCapture
SetScrollPos
GetFocus
GetCapture
SetTimer
EnableMenuItem

gdi32

TextOutW
ExtTextOutW
TranslateCharsetInfo
RealizePalette
RestoreDC
SelectPalette
GetTextExtentPoint32W
SetWindowExtEx
GetTextExtentPointW
SetBkMode
SetBkColor
CreatePalette
SaveDC
StretchBlt
GetObjectW
PatBlt

opengl32

glClearDepth

Exports

Exports

Speyyja
Kscffk
UbHicku
AujIquqci

Sections

.text
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 89B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pr0
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.pr1
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 66KB - Virtual size: 66KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 40B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

81cc98287bdf5eb1e83c65f4ea20b8d9

Headers

File Characteristics

Imports

kernel32

msvcrt

user32

gdi32

opengl32

Exports

Exports

Sections

.text Size: 6KB - Virtual size: 6KB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 512B - Virtual size: 89B

.pr0 Size: 1KB - Virtual size: 1KB

.pr1 Size: 1KB - Virtual size: 1KB

.rsrc Size: 66KB - Virtual size: 66KB

.reloc Size: 512B - Virtual size: 40B

.text
Size: 6KB - Virtual size: 6KB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 512B - Virtual size: 89B

.pr0
Size: 1KB - Virtual size: 1KB

.pr1
Size: 1KB - Virtual size: 1KB

.rsrc
Size: 66KB - Virtual size: 66KB

.reloc
Size: 512B - Virtual size: 40B