77844dbfca3e47673d959a2cd7eba5a7

Sharing

Copy URL Twitter E-mail

General

Target

77844dbfca3e47673d959a2cd7eba5a7
Size

466KB
MD5

77844dbfca3e47673d959a2cd7eba5a7
SHA1

a8515f8de1f92e3a5ed552531d276653542b59aa
SHA256

7b92e7799312a4835742463d576df6419374c3b722270b6e647e33b4e05af427
SHA512

25642e712102bb3a014100f61db1e328c58487a43f21bb8f81b838abc57c37de3c00d8edf2213ca81bde1e44dfe8ac011ff5eb933d43ff00d005f97c7eddf6df
SSDEEP

12288:fVJA0KujZksEgJwQeDwa4l21fA8+6fsosV/ldC:fVmhFgJdeDw4+YIC

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
77844dbfca3e47673d959a2cd7eba5a7

Files

77844dbfca3e47673d959a2cd7eba5a7
.exe windows:4 windows x86 arch:x86

e13d4701bde3f993f3f930e82f490ca7

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

wininet

GopherOpenFileW
InternetWriteFile
InternetFindNextFileA
InternetSetCookieW
HttpOpenRequestW

user32

FindWindowExA
DrawTextW
ReleaseDC
CharUpperBuffW
SetMenuItemBitmaps
DdeCreateDataHandle
ValidateRgn
LookupIconIdFromDirectory
EnumDisplayDevicesA
GetDlgItemInt
DrawStateA
SetDeskWallpaper
LoadAcceleratorsA

comdlg32

GetSaveFileNameA
GetOpenFileNameA
PageSetupDlgA
LoadAlterBitmap
ChooseColorA
ReplaceTextW
ChooseColorW
PrintDlgA

gdi32

CreateRectRgn
GetDCOrgEx
GetColorSpace

kernel32

GetVersion
FreeEnvironmentStringsA
GetVersionExW
GetEnvironmentStrings
GetEnvironmentStringsW
ExitProcess
GetModuleFileNameW
HeapReAlloc
GetStartupInfoA
GetFileType
LoadLibraryA
TlsGetValue
GetModuleHandleA
HeapFree
LCMapStringA
GetCommandLineA
ReadConsoleA
GetCurrentProcessId
GetTickCount
GetCurrentThreadId
WideCharToMultiByte
IsBadWritePtr
WriteFileEx
GlobalFlags
LeaveCriticalSection
GetProfileStringA
MultiByteToWideChar
TlsSetValue
FindResourceExA
HeapAlloc
lstrlen
LCMapStringW
HeapDestroy
VirtualFree
FreeLibraryAndExitThread
GetStringTypeW
GetLastError
GetModuleFileNameA
GetCPInfo
HeapCreate
TerminateProcess
FreeEnvironmentStringsW
SetHandleCount
GetStdHandle
GetACP
GetOEMCP
GetSystemTimeAsFileTime
EnterCriticalSection
GetProcAddress
GetCurrentThread
TlsAlloc
InitializeCriticalSection
TlsFree
GetCurrentProcess
QueryPerformanceCounter
CreateThread
WriteFile
VirtualQuery
RtlUnwind
UnhandledExceptionFilter
GetStringTypeA
InterlockedExchange
VirtualAlloc
DeleteCriticalSection
SetLastError

Sections

.text
Size: 148KB - Virtual size: 148KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 306KB - Virtual size: 322KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e13d4701bde3f993f3f930e82f490ca7

Headers

File Characteristics

Imports

wininet

user32

comdlg32

gdi32

kernel32

Sections

.text Size: 148KB - Virtual size: 148KB

.data Size: 306KB - Virtual size: 322KB

.rsrc Size: 10KB - Virtual size: 10KB

.text
Size: 148KB - Virtual size: 148KB

.data
Size: 306KB - Virtual size: 322KB

.rsrc
Size: 10KB - Virtual size: 10KB