67c0e5447ff53b1982bcbcf53c7f778b

Sharing

Copy URL Twitter E-mail

General

Target

67c0e5447ff53b1982bcbcf53c7f778b
Size

276KB
MD5

67c0e5447ff53b1982bcbcf53c7f778b
SHA1

529a2b7a993a629686297439157b61216080c936
SHA256

7dbcfcfea80b4ed039263af5295d762c1d1d31b006348cda6d83dd50da32625b
SHA512

92e0da1907ed4b9e86bff57aae495b70e4d26c808a82fc2286ced0f6efd3a741bada1027f715f65abe9c976e0d188218ce709c41b948a949ba5ce57821b02f71
SSDEEP

3072:4zQrOhA5pBnrOrqZpNBzXiQdl9lU/rfrzr:40rOm/fvdpIr/

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
67c0e5447ff53b1982bcbcf53c7f778b

Files

67c0e5447ff53b1982bcbcf53c7f778b
.exe windows:4 windows x86 arch:x86

6bfc22b7ed9deb7c672fd0e654607d1b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

WideCharToMultiByte
GetStartupInfoA
GlobalFree
GlobalReAlloc
GlobalSize
GlobalLock
GlobalAlloc
GetModuleHandleA
MultiByteToWideChar
MulDiv
GetProcAddress
GetModuleFileNameW
GlobalUnlock
GetVersionExW

comdlg32

GetOpenFileNameW
GetSaveFileNameW

gdi32

GetObjectW
GetDeviceCaps
SetBkColor
ExtTextOutW
CreateCompatibleDC
BitBlt
DeleteDC
DeleteObject
GetStockObject
SetTextColor
GetTextExtentPoint32W
SetBkMode
SelectObject
EnumFontFamiliesExW
CreateFontIndirectW
Rectangle
CreateSolidBrush

user32

CreateDialogParamW
EndDialog
CreateWindowExW
CheckMenuItem
TrackPopupMenu
GetSubMenu
LoadBitmapW
GetMenuItemCount
GetMenuItemID
GetMenuState
GetMenuStringW
SetMenuDefaultItem
GetClipboardOwner
OpenClipboard
CloseClipboard
RegisterClipboardFormatW
IsClipboardFormatAvailable
GetClipboardData
EmptyClipboard
DialogBoxParamW
SetClipboardData
ModifyMenuW
GetSystemMetrics
DestroyMenu
SetWindowsHookExW
LoadIconW
MessageBoxW
FindWindowW
BringWindowToTop
MessageBeep
GetMessageW
IsWindow
IsDialogMessageW
TranslateMessage
DispatchMessageW
UnhookWindowsHookEx
MessageBoxA
RegisterClassExW
PostQuitMessage
GetCursorPos
SetForegroundWindow
PostMessageW
GetMenuDefaultItem
UpdateWindow
SetFocus
SetCursor
GetSysColor
GetFocus
GetDlgCtrlID
DestroyWindow
GetSystemMenu
LoadStringW
AppendMenuW
EnableWindow
GetDesktopWindow
GetWindowRect
SetWindowPos
IntersectRect
IsWindowVisible
ScreenToClient
ShowWindow
SetWindowTextW
InflateRect
DrawFrameControl
GetWindowTextW
DrawStateW
DrawFocusRect
GetClientRect
DestroyIcon
InvalidateRect
CallWindowProcW
SetWindowLongW
DefWindowProcW
GetWindowLongW
GetDC
GetTopWindow
GetWindow
ReleaseDC
GetDlgItem
LoadImageW
SendMessageW
SendDlgItemMessageW
DestroyCursor
LoadMenuW

shell32

ShellExecuteW

advapi32

RegCloseKey
RegDeleteValueW
RegOpenKeyExW
RegQueryValueExW
RegCreateKeyExW
RegSetValueExW

ukhook35

ord12
ord11
ord7
ord9
ord4
ord8
ord5
ord6
ord10

msvcrt

__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
_acmdln
exit
_XcptFilter
_exit
_onexit
__dllonexit
__p__fmode
isalpha
atoi
fputwc
fputc
fseek
ftell
ungetwc
fgetwc
ungetc
fgetc
setvbuf
isdigit
isxdigit
bsearch
qsort
fwrite
_iob
_setmode
fopen
strrchr
free
remove
rename
_wsplitpath
wcsrchr
_purecall
strchr
strncpy
sprintf
fputs
_wfopen
fgets
fclose
??3@YAXPAX@Z
??2@YAPAXI@Z
wcscmp
wcschr
swprintf
_wcsicmp
wcscpy
toupper
wcslen
__CxxFrameHandler
__set_app_type
_except_handler3
_controlfp
_tempnam
_itoa
_stricmp
islower

Sections

pec1
Size: 112KB - Virtual size: 112KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 24KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

pec2
Size: 32KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

pec3
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 84KB - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

6bfc22b7ed9deb7c672fd0e654607d1b

Headers

File Characteristics

Imports

kernel32

comdlg32

gdi32

user32

shell32

advapi32

ukhook35

msvcrt

Sections

pec1 Size: 112KB - Virtual size: 112KB

.rsrc Size: 24KB - Virtual size: 24KB

pec2 Size: 32KB - Virtual size: 32KB

pec3 Size: 20KB - Virtual size: 20KB

.rsrc Size: 84KB - Virtual size: 84KB

pec1
Size: 112KB - Virtual size: 112KB

.rsrc
Size: 24KB - Virtual size: 24KB

pec2
Size: 32KB - Virtual size: 32KB

pec3
Size: 20KB - Virtual size: 20KB

.rsrc
Size: 84KB - Virtual size: 84KB