35614aa1bf766220169a3bea42184497

Sharing

Copy URL Twitter E-mail

General

Target

35614aa1bf766220169a3bea42184497
Size

148KB
MD5

35614aa1bf766220169a3bea42184497
SHA1

c8e83b773c940b43e8b3a76eafe21017581008ec
SHA256

7bf911d39ff745a3e6201ba530aa6c92b6dd678e83ead439d429b9303babcc93
SHA512

252cb62b6f7bb157aab83d74ba70284bf4aa5c1c465981784f15778ad2b3aaa89734c290078645351c402356fd537e915023310e866b3de3c6a1285d225012cd
SSDEEP

3072:FKB77AZx/m9XbNPJDexHMYPrZSZwsT1JU6Yb6am9y1:Fk8x/m5dJ8HRPV76S6g6jc

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
35614aa1bf766220169a3bea42184497

Files

35614aa1bf766220169a3bea42184497
.exe windows:4 windows x86 arch:x86

1955b08cfb855a0c86a4069c6cc259ea

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

version

GetFileVersionInfoA
VerFindFileA
VerInstallFileA

kernel32

GetModuleHandleW
GetProcAddress
GetOEMCP
ExitProcess
IsBadReadPtr
GetModuleHandleA
GetVersionExA
LoadLibraryA
GetCommandLineA
VirtualAlloc
ExitThread
LoadLibraryExA

user32

GetCapture
DeleteMenu
GetWindowDC
IsWindowEnabled
GetForegroundWindow
GetMenuItemInfoA
CallWindowProcA
IsRectEmpty
DrawIconEx
EnableWindow
GetWindowThreadProcessId
GetClassLongA
CharNextA
DrawFrameControl
CharLowerA
GetScrollPos
CharUpperBuffA
FrameRect
OpenClipboard
ShowWindow
EndPaint
DrawTextA
ActivateKeyboardLayout
ShowScrollBar
GetWindowLongW
CharNextW
SetPropA
SetWindowPos
ScreenToClient
GetTopWindow
GetSubMenu
OffsetRect
TranslateMessage
CreateMenu
SetScrollInfo
GetDCEx
GetDesktopWindow
GetMenu
BeginPaint
AdjustWindowRectEx
GetFocus
GetKeyboardType
OemToCharA
PostQuitMessage
DispatchMessageW
GetSysColor
MessageBoxA
WindowFromPoint
EnumThreadWindows
SetScrollPos
SetClassLongA
MapVirtualKeyA
TrackPopupMenu
CharLowerBuffA
GetIconInfo
GetSystemMenu
InsertMenuItemA
RemoveMenu
DefFrameProcA
PeekMessageW
LoadIconA
DefWindowProcA
SetForegroundWindow
SendMessageW
GetPropA
InsertMenuA
GetKeyNameTextA
GetParent
GetMenuItemID
MsgWaitForMultipleObjects
DrawMenuBar
InflateRect
IsDialogMessageA
EnumWindows
CreateWindowExA
DrawIcon
RemovePropA
CreateIcon
IsZoomed
CheckMenuItem
UnhookWindowsHookEx
LoadKeyboardLayoutA
CharToOemA
SetTimer
IsWindow
GetClassNameA
GetWindowLongA
PeekMessageA
GetKeyState
ReleaseCapture
EnumChildWindows
IsDialogMessageW
GetKeyboardLayoutNameA
SetClipboardData
SetRect
FillRect
GetScrollRange
DestroyIcon
EnableScrollBar
GetWindowTextA
DefMDIChildProcA
LoadBitmapA
FindWindowA
GetScrollInfo
CreatePopupMenu
LoadCursorA
GetMenuState
RegisterClipboardFormatA
DestroyWindow
PostMessageA
CallNextHookEx
GetSysColorBrush
SetCursor
MapWindowPoints
RedrawWindow
UnregisterClassA
DestroyMenu
SendMessageA
DestroyCursor
MoveWindow
GetWindowRect
SetFocus
LoadStringA
GetDC

Sections

CODE
Size: 104KB - Virtual size: 103KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 734B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 12KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ddata
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1955b08cfb855a0c86a4069c6cc259ea

Headers

File Characteristics

Imports

version

kernel32

user32

Sections

CODE Size: 104KB - Virtual size: 103KB

.rdata Size: 4KB - Virtual size: 734B

.data Size: 12KB - Virtual size: 8KB

.bss Size: 4KB - Virtual size: 1KB

.ddata Size: 8KB - Virtual size: 7KB

.rsrc Size: 12KB - Virtual size: 8KB

CODE
Size: 104KB - Virtual size: 103KB

.rdata
Size: 4KB - Virtual size: 734B

.data
Size: 12KB - Virtual size: 8KB

.bss
Size: 4KB - Virtual size: 1KB

.ddata
Size: 8KB - Virtual size: 7KB

.rsrc
Size: 12KB - Virtual size: 8KB