65c7c65027f57903e5235e773cb125d1

Sharing

Copy URL

Twitter E-mail

General

Target

65c7c65027f57903e5235e773cb125d1
Size

330KB
MD5

65c7c65027f57903e5235e773cb125d1
SHA1

c4322e80ad5fd7a6bea9c7799047d234cab263cb
SHA256

71a0ebf5a3d96c9842081056161202d4dd1481973ee7d36255464873e6c4faac
SHA512

bffc3312315fc382e9e5552c185bf44d3a170055239c217d0712cdd6308927db7f7353a3453dc1acfba7e0aacf68f594dc31ad59708c92ed3149331d8bef895c
SSDEEP

6144:wmKWYiKWYMDBE5HRvvhNtT0FdLyDrUx4SBSSsjBnW8mUkQXcfYhCrwyH:7KqK0tE5H1hNdMd+U1gpW8mtQyKa

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
65c7c65027f57903e5235e773cb125d1

Files

65c7c65027f57903e5235e773cb125d1
.exe windows:4 windows x86 arch:x86

f2e2a5ca67adb5805a6a75ce95877a55

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrlenW
GetStringTypeExA
GetThreadLocale
CloseHandle
ReadFile
GetFileSize
CreateFileA
GetFileAttributesA
GetSystemTime
GetSystemDirectoryA
FindClose
FindNextFileA
lstrcmpA
FindFirstFileA
WideCharToMultiByte
GetCurrentProcess
DeleteFileA
Sleep
IsBadReadPtr
GetModuleFileNameA
WaitForSingleObject
GetTempFileNameA
GetTempPathA
GetStartupInfoA
ExitProcess
GetCommandLineA
HeapAlloc
HeapFree
FlushInstructionCache
DeleteCriticalSection
HeapDestroy
InitializeCriticalSection
HeapCreate
InterlockedDecrement
GetModuleHandleA
LoadLibraryA
lstrlenA
GetCurrentThreadId
EnterCriticalSection
LeaveCriticalSection
FindResourceA
LoadResource
FreeResource
InterlockedIncrement
WriteFile

user32

GetSysColor
CallWindowProcA
SetCursor
GetWindowTextA
GetWindowTextLengthA
RedrawWindow
ScreenToClient
ClientToScreen
GetUpdateRect
UpdateWindow
InvalidateRect
wvsprintfA
CharNextA
GetWindowLongA
MapWindowPoints
SetWindowPos
DestroyWindow
LoadStringA
SetWindowLongA
GetSystemMetrics
LoadImageA
SendMessageA
SetWindowTextA
IsDlgButtonChecked
MessageBoxA
EndDialog
DefWindowProcA
GetActiveWindow
GetParent
GetWindowRect
GetWindow
DialogBoxParamA
GetClientRect
SystemParametersInfoA
GetDlgItem

gdi32

SetBkMode
GetStockObject
GetObjectA
CreateSolidBrush
DeleteObject
SetTextColor
CreateFontIndirectA

advapi32

RegCreateKeyExA
RegSetValueExA
RegEnumKeyA
RegOpenKeyExA
RegQueryValueExA
RegCloseKey

shell32

ShellExecuteA
ShellExecuteExA

ole32

CoInitialize
CoUninitialize
CoCreateGuid

comctl32

InitCommonControlsEx

Sections

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 38KB - Virtual size: 37KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 18KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f2e2a5ca67adb5805a6a75ce95877a55

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shell32

ole32

comctl32

Sections

.rdata Size: 3KB - Virtual size: 2KB

.data Size: 38KB - Virtual size: 37KB

.rsrc Size: 18KB - Virtual size: 18KB

.rdata
Size: 3KB - Virtual size: 2KB

.data
Size: 38KB - Virtual size: 37KB

.rsrc
Size: 18KB - Virtual size: 18KB