513b0537f026d86811a2bcd45cd9922f

Sharing

Copy URL

Twitter E-mail

General

Target

513b0537f026d86811a2bcd45cd9922f
Size

219KB
MD5

513b0537f026d86811a2bcd45cd9922f
SHA1

11a2b95e340cd061422c3b35dbbdd06b9e493f96
SHA256

786fad562d1386bbbf106527aa598be15900c90fa8d0d7b979fb73343283d40c
SHA512

a53a706e1dde3f2e4275136820ff6659d80ce170587fa3c3f79cefc16dbcc41b03cad79b627cf167be761598067763af1c56d3d4cabf3474866978c97e838c05
SSDEEP

6144:tSk3LkwzFFFGQx3F2S8GRBJ6VcSRnmQoHJUv:tSdsFFJ05U6V/RnPopU

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
513b0537f026d86811a2bcd45cd9922f

Files

513b0537f026d86811a2bcd45cd9922f
.dll windows:4 windows x86 arch:x86

4bc2cd9d38fd3ac6e15d3324b6f1cff6

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

gdi32

GetRgnBox
CreateBrushIndirect
SelectPalette
SetBkColor
CopyEnhMetaFileA
SetTextColor
SelectObject
CreatePenIndirect

shell32

SHFileOperationA
SHGetDiskFreeSpaceA
SHGetDesktopFolder
SHGetFileInfoA

kernel32

LoadLibraryA
GetModuleHandleA
GetACP
LoadLibraryExA
VirtualAlloc
ExitProcess

shlwapi

SHDeleteValueA
SHQueryInfoKeyA
SHStrDupA
SHQueryValueExA
SHSetValueA

oleaut32

SysStringLen
RegisterTypeLib
VariantChangeType
SafeArrayPtrOfIndex

comctl32

ImageList_Write
ImageList_GetBkColor
ImageList_Read
ImageList_Destroy
ImageList_Create
ImageList_DragShowNolock

user32

IsDialogMessageA
EnableScrollBar
DeferWindowPos
EnumChildWindows
CallWindowProcA
FindWindowA
GetSubMenu
GetScrollRange
CharToOemA
IsWindowEnabled
BeginDeferWindowPos
GetDlgItem
CreateWindowExA
GetSysColorBrush
EnumThreadWindows
IsWindowVisible
CharNextA
GetWindow
GetKeyState
GetScrollPos
GetCapture
DispatchMessageW
GetMenuItemCount
HideCaret
GetIconInfo
FillRect
GetCursor
GetDCEx
GetMessagePos
DrawFrameControl
GetSysColor
GetClassInfoA
DrawEdge
IsChild
GetActiveWindow
GetCursorPos
SetWindowPos
GetMenuState
DefWindowProcA
GetMenu
CheckMenuItem
DispatchMessageA
BeginPaint
GetClipboardData
GetLastActivePopup
ShowWindow
CreateMenu
GetClassLongA
EndDeferWindowPos
GetMenuStringA
SetWindowTextA
DefFrameProcA
FrameRect
GetMenuItemID
GetClientRect
MessageBoxA
ShowScrollBar
CharLowerA
DefMDIChildProcA
GetScrollInfo
IsMenu
EnumWindows
GetFocus
SetWindowLongA
GetPropA
EnableMenuItem
CreateIcon
TrackPopupMenu
ClientToScreen
CallNextHookEx

comdlg32

ChooseColorA
GetOpenFileNameA
FindTextA
GetFileTitleA

msvcrt

log10
memmove
strcmp

Sections

CODE
Size: 51KB - Virtual size: 51KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.init
Size: 160KB - Virtual size: 159KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tls
Size: 512B - Virtual size: 108KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

BSS
Size: 512B - Virtual size: 290B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4bc2cd9d38fd3ac6e15d3324b6f1cff6

Headers

File Characteristics

Imports

gdi32

shell32

kernel32

shlwapi

oleaut32

comctl32

user32

comdlg32

msvcrt

Sections

CODE Size: 51KB - Virtual size: 51KB

.data Size: 3KB - Virtual size: 3KB

.init Size: 160KB - Virtual size: 159KB

.tls Size: 512B - Virtual size: 108KB

BSS Size: 512B - Virtual size: 290B

.reloc Size: 2KB - Virtual size: 1KB

CODE
Size: 51KB - Virtual size: 51KB

.data
Size: 3KB - Virtual size: 3KB

.init
Size: 160KB - Virtual size: 159KB

.tls
Size: 512B - Virtual size: 108KB

BSS
Size: 512B - Virtual size: 290B

.reloc
Size: 2KB - Virtual size: 1KB