3647086c81217f0ae321927c138cba00

Sharing

Copy URL Twitter E-mail

General

Target

3647086c81217f0ae321927c138cba00
Size

187KB
MD5

3647086c81217f0ae321927c138cba00
SHA1

d090b06dfb8efcd273501d93a05262dff9116e36
SHA256

23a84c7a01c853c9d49daee9c01d866b13fed6c5df0d92845b7f634b5b562bc5
SHA512

ca49c0d2909737899f7aa3c83cbf8d17e7861b60ced2778c61f2bb789605f6055a70f0647cba85b0a6f3bcbe5372ceacb674773e00616e2621084d1de577c73a
SSDEEP

3072:XeTUwhG5NiAzKj3FapSgNb6KLITJ0Os1alpYQndibXl4BtxROtw0oUa0Ixg:OZhG5NzzKr0SgNb+10O6insjl4BHRKpt

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3647086c81217f0ae321927c138cba00

Files

3647086c81217f0ae321927c138cba00
.exe windows:5 windows x86 arch:x86

111bf7b6b60b8801488229616679990d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

LoadIconA
GetDlgItemTextW
OemToCharA
ToUnicodeEx
LoadImageA
SwapMouseButton
DrawFocusRect
wsprintfW
CharUpperBuffA
RedrawWindow
DefFrameProcA
ReplyMessage
GetIconInfo
ScrollWindow
DefDlgProcW
CharLowerBuffW
CreateDialogParamW
CharPrevA
ChildWindowFromPoint
GetMessageW
IsCharUpperA
IsCharUpperW
MessageBoxW

kernel32

lstrlenA
GetCPInfo
VirtualQuery
GlobalSize
ResumeThread
SetHandleCount
CreateFileMappingW
MulDiv
GetCurrentThread

gdi32

GetTextColor
CreateHatchBrush
CreateICA
RestoreDC
CreateFontIndirectA
SetRectRgn
CreatePalette
GetViewportOrgEx
SetDIBitsToDevice
CreateICW
CreateDIBitmap

Exports

Exports

_FfgdjhjfghghjlkfUJfkjfdjkgjkfjkgfJfkd@0
_GetClassInfoAGetClassInfoAGetClassInfoAGetClassInfoA@0

Sections

.text
Size: 140KB - Virtual size: 140KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.regfdg
Size: 1024B - Virtual size: 986B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.ffgh
Size: 512B - Virtual size: 64B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rrtr
Size: 512B - Virtual size: 64B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.uiir
Size: 512B - Virtual size: 171B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.cfbv
Size: 512B - Virtual size: 64B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 32KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

111bf7b6b60b8801488229616679990d

Headers

File Characteristics

Imports

user32

kernel32

gdi32

Exports

Exports

Sections

.text Size: 140KB - Virtual size: 140KB

.regfdg Size: 1024B - Virtual size: 986B

.ffgh Size: 512B - Virtual size: 64B

.rrtr Size: 512B - Virtual size: 64B

.uiir Size: 512B - Virtual size: 171B

.cfbv Size: 512B - Virtual size: 64B

.data Size: 9KB - Virtual size: 8KB

.rsrc Size: 32KB - Virtual size: 31KB

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 140KB - Virtual size: 140KB

.regfdg
Size: 1024B - Virtual size: 986B

.ffgh
Size: 512B - Virtual size: 64B

.rrtr
Size: 512B - Virtual size: 64B

.uiir
Size: 512B - Virtual size: 171B

.cfbv
Size: 512B - Virtual size: 64B

.data
Size: 9KB - Virtual size: 8KB

.rsrc
Size: 32KB - Virtual size: 31KB

.reloc
Size: 2KB - Virtual size: 1KB