65d0feb51c26594f2241b74f70f6c82d

Sharing

Copy URL

Twitter E-mail

General

Target

65d0feb51c26594f2241b74f70f6c82d
Size

111KB
MD5

65d0feb51c26594f2241b74f70f6c82d
SHA1

76dce7a6938470f6b8dcbbc77ed4443f364bf7b6
SHA256

e0d4200946f4bd4d0d95356455977866f1de9b14bd5d1540dbe50ac1d6dc2502
SHA512

db8e5e06e83063c0c415151a5b1b6c23d641bb1bedd7478a8f435076810457f2f5b97cc08f1a6cd6018ff5d93fee62be868c2952b938ec50ae498a96e9cd46bb
SSDEEP

1536:JRvBzFo5qRi/7N6rFGlyHUPPDi6PSKW13f5P0eeeWLyYYYo4m:JxBzysRdUPDiWAP5Me5YYYo4

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
65d0feb51c26594f2241b74f70f6c82d

Files

65d0feb51c26594f2241b74f70f6c82d
.exe windows:4 windows x86 arch:x86

3c7d9a98da946b3979d59a2fa6154391

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCommandLineA
GetModuleFileNameA
FreeLibrary
LoadLibraryA
GetProcAddress
WinExec
GetTickCount
FindFirstFileA
FindNextFileA
FindClose
DeleteFileA
GetLocalTime
GlobalFree
GetStringTypeW
GetStringTypeA
RtlUnwind
GetEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsW
FreeEnvironmentStringsA
UnhandledExceptionFilter
GetFileType
GetStdHandle
SetHandleCount
ReadFile
LCMapStringW
LCMapStringA
MultiByteToWideChar
WideCharToMultiByte
SetFilePointer
GetCurrentProcess
TerminateProcess
WriteFile
CloseHandle
HeapReAlloc
VirtualAlloc
VirtualFree
HeapCreate
HeapDestroy
GetVersionExA
GetEnvironmentVariableA
ExitProcess
GetVersion
GetStartupInfoA
GetModuleHandleA
CreateDirectoryA
SetCurrentDirectoryA
GlobalAlloc
GetWindowsDirectoryA
SetEnvironmentVariableA
GetLastError
GetDriveTypeA
GetFullPathNameA
GetCurrentDirectoryA
HeapAlloc
HeapFree
SetStdHandle
FlushFileBuffers
CreateFileA
GetACP
GetOEMCP
SetEndOfFile
GetCPInfo

user32

PostMessageA
DestroyWindow
SendMessageA
CreateWindowExA
ReleaseDC
GetDC
GetMenu
GetWindowRect
GetSystemMetrics
MoveWindow
EndPaint
BeginPaint
SetCursor
LoadCursorA
FillRect
wsprintfA
MessageBoxA
GetCursorPos
ChangeDisplaySettingsA
EnumDisplaySettingsA
IsDlgButtonChecked
GetDlgItemTextA
GetDlgCtrlID
GetClientRect
GetFocus
SetCursorPos
SetScrollRange
ScrollWindow
SetScrollPos
PostQuitMessage
DefWindowProcA
InvalidateRect
FindWindowA
GetSystemMenu
AppendMenuA
PeekMessageA
TranslateMessage
DispatchMessageA
KillTimer
GetMessageA
SetTimer
SetWindowLongA
ShowScrollBar
UpdateWindow
GetActiveWindow
LoadIconA
RegisterClassA
ShowWindow
SetActiveWindow
SetWindowPos
GetAsyncKeyState
SetFocus
SetWindowTextA
ShowCursor

gdi32

SetBkMode
TextOutA
SetStretchBltMode
StretchBlt
DeleteObject
CreateFontIndirectA
GetStockObject
SelectObject
GetTextMetricsA
CreatePen
CreateSolidBrush
SetTextColor
GetTextExtentPoint32A
GetTextExtentPointA
CreatePalette
SetDIBColorTable
GetDeviceCaps
MoveToEx
LineTo
SetPixel
GetPixel
SelectPalette
StretchDIBits
Rectangle
RealizePalette
BitBlt
DeleteDC
CreateDIBSection
CreateCompatibleDC

comdlg32

ChooseColorA
GetSaveFileNameA
GetOpenFileNameA

shell32

ShellExecuteA

winmm

sndPlaySoundA
mciSendStringA

Sections

.text
Size: 89KB - Virtual size: 89KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 14KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 944B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3c7d9a98da946b3979d59a2fa6154391

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

shell32

winmm

Sections

.text Size: 89KB - Virtual size: 89KB

.rdata Size: 5KB - Virtual size: 5KB

.data Size: 14KB - Virtual size: 35KB

.rsrc Size: 1024B - Virtual size: 944B

.text
Size: 89KB - Virtual size: 89KB

.rdata
Size: 5KB - Virtual size: 5KB

.data
Size: 14KB - Virtual size: 35KB

.rsrc
Size: 1024B - Virtual size: 944B