3633176c6b235c8a936226fb10ed226c

General

Target

3633176c6b235c8a936226fb10ed226c
Size

172KB
MD5

3633176c6b235c8a936226fb10ed226c
SHA1

9d961a5c6093ec5a7172e37ed5126228e8cd3d75
SHA256

c1bd87c962b63b30c27d71791187e566cb9058892319240dc0577794a1db682a
SHA512

b711121c77084eafbed53ea96f0d6ab239cbecff93d2f82c665cbe490242600c3c7a7154757158b4c345c5308f5a4fd344bc3d5cfe299a20b09c4eed157ac3f1
SSDEEP

3072:PXSldBbe7U7axF4XXMQedlXWJfaOUyZVHL:IdDaAXXjJfpvr

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3633176c6b235c8a936226fb10ed226c

Files

3633176c6b235c8a936226fb10ed226c
.exe windows:4 windows x86 arch:x86

e9b1a26a24d3f59c1067192fe59161c3

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

version

VerQueryValueA
VerInstallFileA

ole32

PropVariantClear
OleRun
CoRevokeClassObject
CoTaskMemFree
CLSIDFromString
CoFreeUnusedLibraries
CoGetContextToken

shell32

Shell_NotifyIconA

comctl32

ImageList_Create
ImageList_GetBkColor
ImageList_DragShowNolock

gdi32

GetBitmapBits
CreateCompatibleBitmap
GetDIBits
SelectPalette
GetCurrentPositionEx
LineTo

oleaut32

RegisterTypeLib
VariantCopyInd
SafeArrayGetElement
SysFreeString
SafeArrayCreate
SysReAllocStringLen
SafeArrayPtrOfIndex
SafeArrayUnaccessData
VariantChangeType

user32

GetClipboardData
SetWindowsHookExA
GetScrollPos
GetClassNameA
EndPaint
GetCursor
SetForegroundWindow
DestroyWindow
DrawEdge
IsZoomed
ReleaseCapture
IsWindowUnicode
SetClassLongA
ClientToScreen
GetActiveWindow
SetScrollPos
LoadKeyboardLayoutA
IsWindowVisible
GetSubMenu
SetWindowPlacement

kernel32

lstrcpynA
GetModuleHandleA
GetCommandLineA
GetCurrentThreadId
MulDiv
ExitThread
VirtualAllocEx
GetLastError
GetProcAddress
LocalAlloc
VirtualQuery
GetStartupInfoA
VirtualAlloc
GetEnvironmentStrings
GetVersionExA
GlobalAlloc
WideCharToMultiByte

Sections

.text
Size: 35KB - Virtual size: 34KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 133KB - Virtual size: 209KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

e9b1a26a24d3f59c1067192fe59161c3

Headers

File Characteristics

Imports

version

ole32

shell32

comctl32

gdi32

oleaut32

user32

kernel32

Sections

.text Size: 35KB - Virtual size: 34KB

.idata Size: 133KB - Virtual size: 209KB

.data Size: 2KB - Virtual size: 2KB

.text
Size: 35KB - Virtual size: 34KB

.idata
Size: 133KB - Virtual size: 209KB

.data
Size: 2KB - Virtual size: 2KB