375bd34d5ba5c6ac53b30469bded7d4b

Sharing

Copy URL Twitter E-mail

General

Target

375bd34d5ba5c6ac53b30469bded7d4b
Size

221KB
MD5

375bd34d5ba5c6ac53b30469bded7d4b
SHA1

9577dcd7998478aeb370e70e0b3f5d96881652d7
SHA256

48e297f4f44912f8a0f8a57475372a0291be4d53e6bc0ac90c50b5fbf388db89
SHA512

a4c00789359251305272a747f4e84f306f0afe2cdca822e783bf0ddd72db445eb5ce8dd09d22e0752c47d7c5bebea823a4b5cc29466add897b9661fdbd421a93
SSDEEP

6144:EsDbcjh/bgkvNCqsC8qkv72UatA4gmImCKGT4Z22:RvaUWNrBUTtjzLKSmB

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
375bd34d5ba5c6ac53b30469bded7d4b

Files

375bd34d5ba5c6ac53b30469bded7d4b
.exe windows:4 windows x86 arch:x86

f7b6ffd45f261dd8581edb8186b47bb2

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

EndPaint
ReleaseCapture
InflateRect
GetDlgItem
BeginPaint
RegisterClassA
DestroyWindow
IsDialogMessageW
DrawAnimatedRects
ScrollWindow
GetSubMenu
TranslateMDISysAccel
OpenClipboard
IsCharUpperA
SetActiveWindow
SetScrollRange
IsZoomed
DestroyIcon
UnhookWindowsHookEx
ShowOwnedPopups
EnableMenuItem
EmptyClipboard
OpenIcon
GetDC
CallWindowProcA
RegisterWindowMessageA
GetCursor
LoadIconA
ShowScrollBar
GetCapture
EnableWindow
SetWindowsHookExA
GetParent
PostMessageA
GetForegroundWindow
LoadBitmapA
IsWindowVisible
DefMDIChildProcA
GetMenu
GetClipboardData
MessageBoxA
DispatchMessageA
SetScrollInfo
IsDlgButtonChecked
DestroyCursor
GetKeyboardLayoutNameA
GetWindowTextLengthA
SetWindowTextA
EnableScrollBar
TrackPopupMenu
GetFocus
SetWindowLongW
PeekMessageA
FrameRect
ShowWindow
PeekMessageW
DrawIconEx
CharLowerBuffA
IsWindow
LoadStringA
GetWindowPlacement
SetClassLongA
GetKeyboardType

ole32

OleRun
CoUnmarshalInterface
CoTaskMemFree
CoCreateGuid
CoReleaseMarshalData
CoGetContextToken

kernel32

ResetEvent
GetEnvironmentStrings
IsBadHugeReadPtr
FindResourceA
FormatMessageA
VirtualAlloc
LocalAlloc
FreeLibrary
MoveFileExA
ExitProcess
GetCurrentThreadId
MulDiv
LocalFree
GetCommandLineW
CloseHandle
GetProcessHeap
LoadLibraryA
lstrcpynA
InitializeCriticalSection
VirtualAllocEx
lstrlenA
GlobalAlloc
GetCommandLineA
GetVersionExA

Exports

Exports

UNVOIF
xv_XOYOqHl
_272mIQIEj@8

Sections

.text
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 185KB - Virtual size: 185KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bdata
Size: 512B - Virtual size: 258B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f7b6ffd45f261dd8581edb8186b47bb2

Headers

File Characteristics

Imports

user32

ole32

kernel32

Exports

Exports

Sections

.text Size: 10KB - Virtual size: 10KB

.data Size: 11KB - Virtual size: 10KB

.edata Size: 185KB - Virtual size: 185KB

.idata Size: 3KB - Virtual size: 3KB

.bdata Size: 512B - Virtual size: 258B

.rsrc Size: 9KB - Virtual size: 8KB

.text
Size: 10KB - Virtual size: 10KB

.data
Size: 11KB - Virtual size: 10KB

.edata
Size: 185KB - Virtual size: 185KB

.idata
Size: 3KB - Virtual size: 3KB

.bdata
Size: 512B - Virtual size: 258B

.rsrc
Size: 9KB - Virtual size: 8KB