70b04f499a27185a835b904c278311c8

Sharing

Copy URL Twitter E-mail

General

Target

70b04f499a27185a835b904c278311c8
Size

125KB
MD5

70b04f499a27185a835b904c278311c8
SHA1

e775ac66b020934a85f7613d10ed78c1a26670c8
SHA256

dba53c233331f50333d652f3f92a5f1abd6ce33847fe9b546fbd1981a9dea63b
SHA512

19cca7331651d9d7b590eb54939a232c7d36384aca74ae38cfbbf7ace6c8af83cbc3e7be438563259c193e2e3973c97d7cfc3013c11aace7517a25cf9de6445a
SSDEEP

3072:cmsSynvK5afSKJq5DCgeR82J2DImP231tokqE5voznTUBlIkO:cmsHvhKKJ6e/J

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
70b04f499a27185a835b904c278311c8

Files

70b04f499a27185a835b904c278311c8
.dll windows:4 windows x86 arch:x86

7b447c635370e244edf6d86486c5efe9

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetProcAddress
GetCommandLineA
lstrcmpiW
FreeLibrary
LocalFree
LocalAlloc
MulDiv
GlobalAlloc
GlobalLock
MultiByteToWideChar
GetACP
WideCharToMultiByte
lstrlenW
GetProcessHeap
VirtualProtect
GetModuleHandleW
GlobalFree
GlobalUnlock
GlobalHandle
lstrlenA

user32

UnregisterClassW
GetScrollPos
GetSysColor
GetClientRect
LoadStringW
ReleaseDC
GetDC
SetWindowPos
AdjustWindowRect
GetWindowLongW
GetWindowRect
LoadCursorW
DefWindowProcW
SetWindowLongW
ShowWindow
InvalidateRect
DialogBoxParamW
GetSystemMetrics
GetActiveWindow
CharUpperBuffW
CharLowerW
CharPrevW
CharNextW
OffsetRect
DrawTextW
SetRectEmpty
FillRect
SetTimer
KillTimer
SetActiveWindow
SetDlgItemTextW
DrawIcon
SetRect
PostMessageW
IsRectEmpty
CheckMenuItem
CreatePopupMenu
AppendMenuW
DestroyMenu
CloseClipboard
SetClipboardData
EmptyClipboard
OpenClipboard
GetClassInfoW
RegisterClipboardFormatW
RegisterClassW
BeginPaint
IsIconic
EndPaint
DestroyIcon
DefMDIChildProcW
ClientToScreen
TrackPopupMenu
PeekMessageW
PtInRect
GetCursorPos
GetSysColorBrush
GetKeyState
SendMessageW

advapi32

RegCloseKey
RegOpenKeyExW
RegQueryValueExW

gdi32

SetPaletteEntries
SaveDC
RestoreDC
SetTextColor
ExcludeClipRect
CreateMetaFileW
SetWindowOrgEx
SetWindowExtEx
CloseMetaFile
DeleteMetaFile
CreatePatternBrush
CreateSolidBrush
GetDIBits
PatBlt
SetBkColor
GetClipBox
SetBitmapBits
StretchBlt
SetDIBitsToDevice
StretchDIBits
GdiFlush
SetStretchBltMode
RealizePalette
GetStockObject
SelectPalette
CreateCompatibleDC
CreateDIBSection
GetDeviceCaps
IntersectClipRect
GetDCOrgEx
LPtoDP
DeleteDC
SelectObject
DeleteObject
CreatePalette
GetPaletteEntries
GetObjectW
GetNearestPaletteIndex
SetDIBColorTable
AnimatePalette
CreateCompatibleBitmap

msvcrt

_adjust_fdiv
malloc
_initterm
free
_vsnwprintf
memset
_except_handler3

Sections

.text
Size: 29KB - Virtual size: 29KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 36KB - Virtual size: 69KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 53KB - Virtual size: 53KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7b447c635370e244edf6d86486c5efe9

Headers

File Characteristics

Imports

kernel32

user32

advapi32

gdi32

msvcrt

Sections

.text Size: 29KB - Virtual size: 29KB

.rdata Size: 3KB - Virtual size: 3KB

.data Size: 36KB - Virtual size: 69KB

.rsrc Size: 53KB - Virtual size: 53KB

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 29KB - Virtual size: 29KB

.rdata
Size: 3KB - Virtual size: 3KB

.data
Size: 36KB - Virtual size: 69KB

.rsrc
Size: 53KB - Virtual size: 53KB

.reloc
Size: 2KB - Virtual size: 1KB