73af00cc6fb183c501b29b0f130cbebe

Sharing

Copy URL Twitter E-mail

General

Target

73af00cc6fb183c501b29b0f130cbebe
Size

163KB
MD5

73af00cc6fb183c501b29b0f130cbebe
SHA1

2bd517c8b82c85c5db9d6dec5deb7bde8e310b57
SHA256

cf2ef97b4653843e552486e13ab7222e5824d526da77e3463a9190d4bc61d664
SHA512

84f9b5012cc6b3e5173e038b51a15a3b896e09e4168200f7561f861d548939387b44fe0f809f1fa82593a39feaeb647a84e3c3a73222776c31613e9b6c030cf1
SSDEEP

3072:OdEq3PH4DwVk/n4GZkG6a63Ca4OXJbeGSFXa6IG8lOAnzq9DnT:eVk/n4GZk3sO5bDSFvI6Anz6DT

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
73af00cc6fb183c501b29b0f130cbebe

Files

73af00cc6fb183c501b29b0f130cbebe
.exe windows:4 windows x86 arch:x86

20a9024d63aa96f9ca85a36130b75335

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdiplus

GdipCreateBitmapFromFile
GdipGetImageWidth
GdipGetImagePixelFormat
GdipGetImageHeight
GdipDisposeImage

kernel32

WaitCommEvent
GetVersionExA
ExitProcess
CloseHandle
WaitCommEvent
GlobalAlloc
CreateFileW
LocalAlloc
DisableThreadLibraryCalls
GetTickCount
GetSystemTimeAsFileTime
EnumResourceNamesW
LocalFree
GlobalLock
ExitProcess
GetCurrentProcessId
GetFullPathNameW
LoadLibraryW
GetModuleFileNameA
ReadFile
GetCurrentThreadId
GlobalUnlock

gdi32

CreatePen
LineTo
StretchBlt
CreateDCW
CreateDIBSection
BitBlt
GetObjectType
CreateCompatibleDC
DeleteDC
SelectObject
SetStretchBltMode
CreateBitmap

msimg32

AlphaBlend
TransparentBlt

user32

LoadCursorW
IsWindow
GetFocus
DestroyMenu
SetParent
TrackPopupMenuEx
FindWindowA
RedrawWindow
InvalidateRect
EnableWindow
SetWindowPos
CreatePopupMenu
GetDesktopWindow
SetCursor
ClipCursor
PtInRect

ole32

CoInitialize
StringFromGUID2
CoUninitialize
CoFreeUnusedLibraries
CoCreateInstance

comctl32

ImageList_DragLeave
ImageList_DragMove
ImageList_DragEnter

winmm

timeGetTime

advapi32

RegSetValueExW
RegCreateKeyW
RegOpenKeyExW
RegCloseKey
RegDeleteKeyW
RegQueryValueExW
RegSetValueW
RegEnumKeyExW

Sections

.text
Size: 114KB - Virtual size: 113KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 45KB - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsr
Size: 512B - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

20a9024d63aa96f9ca85a36130b75335

Headers

File Characteristics

Imports

gdiplus

kernel32

gdi32

msimg32

user32

ole32

comctl32

winmm

advapi32

Sections

.text Size: 114KB - Virtual size: 113KB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 45KB - Virtual size: 44KB

.rsr Size: 512B - Virtual size: 68KB

.text
Size: 114KB - Virtual size: 113KB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 45KB - Virtual size: 44KB

.rsr
Size: 512B - Virtual size: 68KB