48c9c4e6ac1b850afc549b4d3f292e9c

Sharing

Copy URL Twitter E-mail

General

Target

48c9c4e6ac1b850afc549b4d3f292e9c
Size

173KB
MD5

48c9c4e6ac1b850afc549b4d3f292e9c
SHA1

5f2d0ff2ca7072f6e1b5c10a2b45dfa0b6a9a6c0
SHA256

dcbdc95d394af79ee2521f2c68ddf48145d8242b0c078f53af069bc3927c97b8
SHA512

60c8616c9031c2da1d890a6456d56f506b2060041df3aeb12484b06d4e6b20e3ee0bc8124fe19b0be94cf4f9671467232f04ce17f1cff5ab51bb2d43286be294
SSDEEP

3072:vwWCsJ7KJBcnTJD8zNr+4ba1dQTWOL9+FVKlt0EXmfgoC2IoSmKYHrNkKk:YWnJ7KJ2TJOr+4baHQTvL0FU0lr3L

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
48c9c4e6ac1b850afc549b4d3f292e9c

Files

48c9c4e6ac1b850afc549b4d3f292e9c
.dll windows:4 windows x86 arch:x86

82477c9db17d6b180d59c3f4d5d5be8f

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

msvbvm60

__vbaForEachCollAd
__vbaForEachAry
__vbaFileOpen
__vbaFileClose
__vbaExceptHandler
__vbaEraseKeepData
__vbaDerefAry1
__vbaDateVar
__vbaCyVar
__vbaCyUI1
__vbaCySub
__vbaCySgn
__vbaCyMul
__vbaCyErrVar
__vbaCyAbs
__vbaCopyBytesZero
__vbaChkstk
__vbaCheckTypeVar
__vbaCVarAryUdt
__vbaAryCopy
__vbaBoolVarNull
__vbaAryVarVarg
__vbaAryUnlock
__vbaAryRebase1Var
__vbaAryMove

user32

DestroyWindow
DeleteMenu
CreatePopupMenu
CreateMDIWindowA
CreateIconFromResourceEx
CreateDialogIndirectParamA
CreateDesktopA
CreateCursor
DispatchMessageA
CharUpperA
CharToOemBuffA
CharToOemA
CharPrevA
CharNextA
CharLowerA
ChangeMenuA
BeginPaint
ActivateKeyboardLayout
DrawCaption
DrawMenuBar
EnableMenuItem
EndDialog
EndMenu
EndPaint
GetCursor
GetDC
GetDlgItem
GetWindowTextA
IsCharLowerA
LoadAcceleratorsA
LoadAcceleratorsW
LoadCursorFromFileA
LoadIconA
LoadImageA
MessageBeep
OemToCharA
OemToCharBuffA
RegisterClassA
SetCursor
ToAscii
ShowWindow
ShowOwnedPopups
ShowCursor
ShowCaret
CharUpperBuffA
SetMenuInfo

kernel32

FlushFileBuffers
EnumResourceLanguagesA
EnumResourceLanguagesW
EnumResourceNamesA
ExitProcess
FindResourceA
FreeResource
GetCommandLineA
GetDateFormatA
GetFileSize
GetLastError
GetModuleHandleA
GetPrivateProfileStringA
GetSystemTime
GetSystemTimeAsFileTime
GetTimeFormatA
GetVersionExA
LoadResource
LocalAlloc
OpenFile
OpenFileMappingA
ReadFile
SetCurrentDirectoryA
SetEndOfFile
SetLastError
SleepEx
lstrlenA
lstrcpynA
lstrcpyA
lstrcmpiA
lstrcmpA
lstrcatA
WriteFile
VirtualAlloc
TlsSetValue
TlsGetValue
TlsFree
TlsAlloc
CompareStringA

dinput

DirectInputCreateW

ole32

RevokeDragDrop
ReleaseStgMedium
RegisterDragDrop
ReadClassStg
ProgIDFromCLSID
OleLockRunning
OleDuplicateData
GetRunningObjectTable
GetConvertStg
CreateStreamOnHGlobal
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
CreateBindCtx
CoTaskMemRealloc
CoTaskMemFree
CoResumeClassObjects
CoRegisterMessageFilter
CoRegisterClassObject
CoLockObjectExternal
CoInitialize
CoGetMalloc
CoCreateInstance
CoCreateGuid
CLSIDFromProgID
CreateFileMoniker
WriteClassStm

wininet

FindFirstUrlCacheGroup
FindNextUrlCacheEntryA
FindNextUrlCacheGroup
HttpAddRequestHeadersA
HttpOpenRequestA
HttpQueryInfoA
HttpSendRequestA
InternetCanonicalizeUrlA
InternetCloseHandle
InternetGetCookieA
InternetGetLastResponseInfoA
InternetGoOnlineA
InternetOpenA
InternetReadFile
InternetSetFilePointer
InternetSetOptionExA

Exports

Exports

Clwy
Eqazbflz

Sections

.text
Size: 24KB - Virtual size: 24KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 51KB - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 69KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 23KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

82477c9db17d6b180d59c3f4d5d5be8f

Headers

File Characteristics

Imports

msvbvm60

user32

kernel32

dinput

ole32

wininet

Exports

Exports

Sections

.text Size: 24KB - Virtual size: 24KB

.rdata Size: 51KB - Virtual size: 52KB

.data Size: 69KB - Virtual size: 72KB

.idata Size: 4KB - Virtual size: 8KB

.rsrc Size: 23KB - Virtual size: 24KB

.text
Size: 24KB - Virtual size: 24KB

.rdata
Size: 51KB - Virtual size: 52KB

.data
Size: 69KB - Virtual size: 72KB

.idata
Size: 4KB - Virtual size: 8KB

.rsrc
Size: 23KB - Virtual size: 24KB