76ebf7610629f3ac6d0b4e0a33c443f3

Sharing

Copy URL Twitter E-mail

General

Target

76ebf7610629f3ac6d0b4e0a33c443f3
Size

62KB
MD5

76ebf7610629f3ac6d0b4e0a33c443f3
SHA1

97733ddb953595ea861bcf783e920575bae2886a
SHA256

2cb041e8fb84a831e0bc7b9b3345332148cada3eb88cbeba71a3fa6dbf62d517
SHA512

2a2aef025473b31214079cd6788457a52cd7030b9213cf1db991463d9057c5fb8d1a931f50390ff384f42446b7fd99c8ec45622fc6d813d7aa85c4bd965154e3
SSDEEP

768:5tdYya5jAU9sOwFMR00mTOCMC0rWIAbpAtEU/6UtvniIgNJhFt865ziydC9zU/NX:5bqsU9sOLOOCMW6bnEnX1hiCYyNVrVT

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
76ebf7610629f3ac6d0b4e0a33c443f3

Files

76ebf7610629f3ac6d0b4e0a33c443f3
.exe windows:5 windows x86 arch:x86

51e1c62053bdbd077c3136f9844134b4

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

clearerr
iswalpha
_controlfp
strncmp
strcpy
iswxdigit
__set_app_type
__p__fmode
atoi
iswprint
swprintf
iswctype
fputc
__p__commode
isalpha
_amsg_exit
islower
strcoll
mktime
strtoul
putc
_initterm
realloc
ftell
fread
iswspace
fgetc
_ismbblead
fprintf
fclose
wcstod
isprint
strpbrk
wcscat
atol
wcscpy
wcspbrk
_XcptFilter
_exit
swscanf
_cexit
wcstombs
setlocale
wcslen
__setusermatherr
putchar
time
__getmainargs

user32

CharUpperW
InsertMenuItemW
EnableMenuItem
GetMenuItemInfoW
CloseDesktop
SetWindowPlacement
WindowFromPoint
SetCaretPos
SetWindowTextA
SendNotifyMessageW
MapVirtualKeyExW
GetCaretPos
GetClipCursor
RegisterHotKey
LoadIconA
TabbedTextOutW
UpdateWindow
SetLastErrorEx
SetScrollRange
EnableWindow
MessageBoxExW
ShowOwnedPopups
SwitchToThisWindow
SetRect
DefFrameProcA
CheckMenuRadioItem
CopyImage
wvsprintfA
LoadMenuW
GetLastActivePopup
IsDialogMessageA
GetMessageTime
WaitMessage
IsWindow
GetScrollPos
GetClassNameW
GetMenuStringW
CharUpperBuffW
InSendMessageEx
RegisterClassA
GetDC
DrawIcon
TrackPopupMenu
GetWindowLongA
CheckDlgButton
GetKeyboardLayoutList
CharToOemW
GetTopWindow
SetRectEmpty
ShowWindowAsync
HideCaret
MapWindowPoints
CreateCursor
GetWindowLongW
CharPrevA
SetActiveWindow
CreateMenu
SetScrollInfo
DeferWindowPos
GetKeyboardType
DialogBoxIndirectParamA
AppendMenuW
GetClassInfoW
PostThreadMessageA
AttachThreadInput
DestroyMenu
LoadAcceleratorsA
GetMessagePos
SetTimer
DefDlgProcW
GetMenuItemID
ChildWindowFromPoint
CharToOemA
GetAsyncKeyState
SendMessageTimeoutA
LoadStringA
DestroyCaret
SetMenuDefaultItem
LoadImageA
CheckRadioButton
SetCursorPos
LoadImageW
CreateDialogIndirectParamW
SetUserObjectInformationW
DialogBoxIndirectParamW
PostThreadMessageW
DrawFocusRect
TranslateMessage
GetClassLongA
RedrawWindow
SendMessageW
SetSysColors
GetScrollInfo
ShowCursor
GetWindow
LoadCursorW
mouse_event
DestroyWindow
SendMessageA
MessageBoxExA
ArrangeIconicWindows
SendDlgItemMessageW
GetSubMenu
GetUpdateRgn
CallWindowProcW
DialogBoxParamW
ShowWindow
SetDlgItemTextA
GetIconInfo
InvalidateRect
wvsprintfW
GetDlgItemTextA
GetMenuState
ChangeMenuW
LoadCursorA
ScrollWindowEx
SystemParametersInfoA

kernel32

GetModuleHandleA
GetSystemDefaultLangID
HeapLock
GlobalLock
MapViewOfFile
RaiseException
FindFirstChangeNotificationW
SetLocalTime
TlsGetValue
TlsSetValue
MoveFileW
GetTempFileNameW
GetUserDefaultLangID
ReleaseSemaphore
GetOEMCP
CreateThread
GetTempPathA
SetCommState
LCMapStringW
GetStringTypeExW
GetSystemWindowsDirectoryW
CreateFileA
GlobalReAlloc
FoldStringW
SetThreadAffinityMask
GetComputerNameW
GetThreadLocale
UnmapViewOfFile
LoadLibraryA
GetSystemTimeAsFileTime
EnumResourceNamesA
FileTimeToLocalFileTime
GetUserDefaultUILanguage
ReleaseMutex
lstrlenW
GetFileType
SetFilePointer
GetLocaleInfoA
SetFileAttributesW
GetPriorityClass
SetFileAttributesA
lstrcatW
GetFullPathNameA
GetStartupInfoW
FindResourceExA
GlobalAlloc
HeapWalk
GetAtomNameW
IsDBCSLeadByteEx
GetCommTimeouts
IsValidLocale
VirtualFree
CompareFileTime
TlsFree
EnumResourceLanguagesA
WaitForMultipleObjectsEx

comctl32

ImageList_Destroy
CreateStatusWindowW
CreatePropertySheetPageA
ImageList_Draw
PropertySheetW
ImageList_GetImageCount

Exports

Exports

?GetShiftAltInfo@@YGK_KHE:O

Sections

.text
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.bit
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.insec
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.inmin
Size: 512B - Virtual size: 86B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.wall
Size: 1024B - Virtual size: 42KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.zdata
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 512B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

51e1c62053bdbd077c3136f9844134b4

Headers

File Characteristics

Imports

msvcrt

user32

kernel32

comctl32

Exports

Exports

Sections

.text Size: 8KB - Virtual size: 7KB

.bit Size: 1KB - Virtual size: 1KB

.insec Size: 6KB - Virtual size: 5KB

.inmin Size: 512B - Virtual size: 86B

.wall Size: 1024B - Virtual size: 42KB

.zdata Size: 12KB - Virtual size: 12KB

.data Size: 2KB - Virtual size: 1KB

.tls Size: 512B - Virtual size: 512B

.rsrc Size: 28KB - Virtual size: 27KB

.reloc Size: 1KB - Virtual size: 1KB

.text
Size: 8KB - Virtual size: 7KB

.bit
Size: 1KB - Virtual size: 1KB

.insec
Size: 6KB - Virtual size: 5KB

.inmin
Size: 512B - Virtual size: 86B

.wall
Size: 1024B - Virtual size: 42KB

.zdata
Size: 12KB - Virtual size: 12KB

.data
Size: 2KB - Virtual size: 1KB

.tls
Size: 512B - Virtual size: 512B

.rsrc
Size: 28KB - Virtual size: 27KB

.reloc
Size: 1KB - Virtual size: 1KB