3be293710643884227c8ed59f9079b5f

Sharing

Copy URL

Twitter E-mail

General

Target

3be293710643884227c8ed59f9079b5f
Size

85KB
MD5

3be293710643884227c8ed59f9079b5f
SHA1

321419f2166c710c6dc8a8b8605c4cd2e7de0e56
SHA256

7f3e8e92eaa4c4769aeeb520104e419fda5da72f60be81f1182990049f6c3dca
SHA512

93bdf7e62ebec84a217f83798b84f7bbd5f544a20168fe1437374b7a96620a5990f0dc333601119e0635918f2980cf6923c58556f469af399946837668a3ef54
SSDEEP

768:fQrh3iiJU9DPMHoArjFOFQHyAIS44BKBgeLrk2hsjmch/oHc/NdAU1Sm5d:fYyeUpoo+j/z8xEyUoHaN2Usm5d

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3be293710643884227c8ed59f9079b5f

Files

3be293710643884227c8ed59f9079b5f
.exe windows:4 windows x86 arch:x86

5e2d676f73c69ce152360273a18808e9

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

WideCharToMultiByte
MultiByteToWideChar
DeleteFileA
GetProcAddress
WinExec
LoadLibraryA
FreeLibrary
FlushFileBuffers
GetStringTypeW
GetStringTypeA
SetStdHandle
GetOEMCP
GetACP
GetCPInfo
IsBadCodePtr
IsBadReadPtr
SetUnhandledExceptionFilter
LCMapStringW
LCMapStringA
GetFileType
GetWindowsDirectoryA
WriteFile
GetEnvironmentStringsW
GetFileSize
FreeEnvironmentStringsW
GetTempFileNameA
GetTempPathA
GetCurrentProcess
TerminateProcess
IsBadWritePtr
HeapReAlloc
VirtualAlloc
VirtualFree
HeapCreate
HeapDestroy
GetVersionExA
GetEnvironmentVariableA
GetModuleFileNameA
ExitProcess
GetVersion
GetStartupInfoA
GetModuleHandleA
RtlUnwind
HeapFree
HeapAlloc
GlobalAlloc
GlobalLock
GlobalUnlock
CloseHandle
SetFilePointer
GetLastError
LocalFree
ReadFile
GetCommandLineA
FreeEnvironmentStringsA
UnhandledExceptionFilter
FormatMessageA
CreateFileA
RaiseException
GetStdHandle
SetHandleCount
GetEnvironmentStrings

user32

LoadAcceleratorsA
ShowWindow
TranslateAcceleratorA
TranslateMessage
DispatchMessageA
RegisterClassA
TrackPopupMenu
PostQuitMessage
DestroyWindow
DefWindowProcA
SetWindowLongA
LoadMenuA
SetMenu
CreateWindowExA
LoadIconA
GetClientRect
BeginDeferWindowPos
DeferWindowPos
EndDeferWindowPos
PostMessageA
GetWindowLongA
GetWindowRect
GetCursorPos
OpenClipboard
EmptyClipboard
SetClipboardData
CloseClipboard
CheckMenuItem
GetMenu
GetSubMenu
EnableMenuItem
MessageBoxA
DialogBoxParamA
ChildWindowFromPoint
GetDlgItem
LoadCursorA
SetCursor
GetSysColorBrush
EndDialog
SetDlgItemTextA
SendMessageA
GetMessageA
UpdateWindow

gdi32

SetBkMode
DeleteObject
CreateFontIndirectA
SetTextColor

comdlg32

GetSaveFileNameA
GetOpenFileNameA

advapi32

RegOpenKeyExA
RegCreateKeyExA
RegCloseKey
RegSetValueExA
RegEnumKeyExA
RegQueryValueExA
RegEnumValueA

shell32

ShellExecuteA

ole32

CoTaskMemFree

comctl32

ImageList_ReplaceIcon
ImageList_SetImageCount
ImageList_Create
CreateToolbarEx
ord6
InitCommonControlsEx

oleaut32

GetErrorInfo

Sections

.text
Size: 40KB - Virtual size: 37KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5e2d676f73c69ce152360273a18808e9

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

shell32

ole32

comctl32

oleaut32

Sections

.text Size: 40KB - Virtual size: 37KB

.rdata Size: 8KB - Virtual size: 6KB

.data Size: 16KB - Virtual size: 20KB

.rsrc Size: 4KB - Virtual size: 16B

.text
Size: 40KB - Virtual size: 37KB

.rdata
Size: 8KB - Virtual size: 6KB

.data
Size: 16KB - Virtual size: 20KB

.rsrc
Size: 4KB - Virtual size: 16B