77b8228c74ebcd08ad153bf3ec4b1403

Sharing

Copy URL

Twitter E-mail

General

Target

77b8228c74ebcd08ad153bf3ec4b1403
Size

578KB
MD5

77b8228c74ebcd08ad153bf3ec4b1403
SHA1

4a880932e2472f936faac5a17b73a4298d74f76d
SHA256

21c7895e82a4fec6abbe364b050ebaa95b09871d30186d6266345971a0ea8280
SHA512

fe609948e619ad34e2ae8f0b52fa832b7c00c96dd237eb11881d2c8f955ef206e97a2149a75127758bc5290f11b61f8357ea179b013e60176b0b907fe62a99cb
SSDEEP

12288:8j8Rt2Fq7oIXn7aTIFnih/IoTZXx3gLfgZe1Ei0uT12UEY/3S:8oRt2Gaso7ZgLfD1nT4JI3S

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
77b8228c74ebcd08ad153bf3ec4b1403

Files

77b8228c74ebcd08ad153bf3ec4b1403
.exe windows:5 windows x86 arch:x86

f40f3ae5b365b0b54e9d2676cff863bb

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleFileNameA
GetCommandLineW
GetStringTypeW
LCMapStringW
GetConsoleMode
GetConsoleCP
SetFilePointer
WideCharToMultiByte
GetSystemTimeAsFileTime
GetTickCount
QueryPerformanceCounter
GetFileType
SetHandleCount
GetEnvironmentStringsW
FreeEnvironmentStringsW
IsValidCodePage
GetOEMCP
GetACP
GetCPInfo
ExitProcess
HeapCreate
HeapAlloc
GetStdHandle
WriteFile
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
TerminateProcess
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
GetStartupInfoW
HeapSetInformation
EncodePointer
DecodePointer
RtlUnwind
HeapSize
HeapReAlloc
HeapDestroy
InterlockedPopEntrySList
IsProcessorFeaturePresent
InterlockedPushEntrySList
InterlockedCompareExchange
VirtualProtect
IsBadReadPtr
LoadLibraryA
VirtualFree
GetProcessHeap
HeapFree
VirtualAlloc
Sleep
SetLastError
lstrcpynW
lstrlenA
lstrcpynA
GetCurrentThreadId
lstrcmpW
GetCurrentProcessId
GetCurrentProcess
FlushInstructionCache
lstrcpyW
LoadLibraryW
GetModuleFileNameW
SetStdHandle
WriteConsoleW
CreateFileW
CloseHandle
FlushFileBuffers
LoadLibraryExW
MultiByteToWideChar
FreeLibrary
MulDiv
lstrcmpiW
InterlockedDecrement
InterlockedIncrement
GetModuleHandleW
GetProcAddress
lstrlenW
GetVersionExW
DeleteCriticalSection
InitializeCriticalSectionAndSpinCount
GetLastError
LeaveCriticalSection
EnterCriticalSection
RaiseException
FindResourceW
SizeofResource
LoadResource
LockResource

user32

EndDialog
GetWindow
MonitorFromWindow
GetDC
RegisterClassExW
ShowWindow
RemoveMenu
AppendMenuW
DialogBoxParamW
LoadBitmapW
LoadStringA
PostQuitMessage
LoadStringW
GetWindowRect
SetMenuDefaultItem
GetClassInfoExW
SetMenu
LoadImageW
CreatePopupMenu
GetMenu
DestroyWindow
GetSubMenu
PeekMessageW
IsMenu
SetWindowsHookExW
GetClassNameW
CallNextHookEx
GetKeyState
CharLowerW
UnhookWindowsHookEx
InflateRect
RegisterWindowMessageW
GetSysColorBrush
TrackPopupMenuEx
WindowFromPoint
MessageBeep
FrameRect
ModifyMenuW
MonitorFromPoint
GetMonitorInfoW
DrawFrameControl
GetFocus
SetMenuItemInfoW
GetMenuItemInfoW
GetMenuItemID
GetMenuItemCount
GetActiveWindow
GetWindowThreadProcessId
IsWindowEnabled
IsWindowVisible
MapWindowPoints
PostMessageW
DestroyMenu
GetCapture
SetCursor
ReleaseDC
GetWindowDC
GetSystemMetrics
SystemParametersInfoW
GetMessagePos
PtInRect
ReleaseCapture
SetCapture
UpdateWindow
ScreenToClient
OffsetRect
GetSysColor
EndPaint
BeginPaint
SetRect
DrawEdge
DrawTextW
FillRect
CallWindowProcW
GetParent
SetFocus
InvalidateRect
GetClientRect
SetWindowPos
SendMessageW
CreateWindowExW
SetRectEmpty
LoadCursorW
CharNextW
DefWindowProcW
IsWindow
GetWindowLongW
SetWindowLongW
TranslateAcceleratorW
UnregisterClassA

gdi32

GetCurrentObject
CreateDIBSection
SetBkColor
SetBrushOrgEx
CreateFontIndirectW
CreateCompatibleBitmap
BitBlt
CreateCompatibleDC
CreateBitmap
CreatePatternBrush
PatBlt
DeleteDC
LineTo
MoveToEx
DeleteObject
GetStockObject
GetObjectW
SelectObject
SetBkMode
CreatePen
SetTextColor

ole32

CoCreateInstance
CoTaskMemRealloc
CoTaskMemAlloc
CoTaskMemFree

oleaut32

VarUI4FromStr

advapi32

RegOpenKeyExW
RegDeleteKeyW
RegDeleteValueW
RegCloseKey
RegSetValueExW
RegQueryInfoKeyW
RegEnumKeyExW
RegCreateKeyExW

comctl32

ImageList_Destroy
ImageList_GetImageCount
ImageList_Draw
ImageList_DrawIndirect
CreateStatusWindowW
ord8
ImageList_Create
ImageList_LoadImageW
InitCommonControlsEx
ImageList_AddMasked

Sections

.text
Size: 118KB - Virtual size: 118KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 29KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 7KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 403KB - Virtual size: 403KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f40f3ae5b365b0b54e9d2676cff863bb

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

ole32

oleaut32

advapi32

comctl32

Sections

.text Size: 118KB - Virtual size: 118KB

.rdata Size: 29KB - Virtual size: 29KB

.data Size: 7KB - Virtual size: 16KB

.rsrc Size: 403KB - Virtual size: 403KB

.reloc Size: 11KB - Virtual size: 11KB

.text
Size: 118KB - Virtual size: 118KB

.rdata
Size: 29KB - Virtual size: 29KB

.data
Size: 7KB - Virtual size: 16KB

.rsrc
Size: 403KB - Virtual size: 403KB

.reloc
Size: 11KB - Virtual size: 11KB