77a92a15717ce031a8f42228be680f77

Sharing

Copy URL

Twitter E-mail

General

Target

77a92a15717ce031a8f42228be680f77
Size

218KB
MD5

77a92a15717ce031a8f42228be680f77
SHA1

8de26f2a0903854480927c31c6795c91672ece9e
SHA256

f8091ec5985c8a58cb609fdbc0fe1c0ec9d4bcc73f8137a61caf83d6cb48df41
SHA512

d92229d88b4de33df6ff5b81cc72780c2cfa428c60fd84cc48d998ad218dc461183cc92c8658c1ef8f7c43dc1d01c9b94b533552aa61925053a8150a1702d4c1
SSDEEP

6144:54Q9Smi4EaT+v9KvGqlOlziStHzeiPkAhdF:5tm4Eaqv9rqlApVh3

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
77a92a15717ce031a8f42228be680f77

Files

77a92a15717ce031a8f42228be680f77
.exe windows:5 windows x86 arch:x86

06855c383c0f85ef8a11c026dad2c3ca

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

comdlg32

FindTextW
GetFileTitleW
GetSaveFileNameA
GetOpenFileNameA

msvcrt

_controlfp
__set_app_type
isalnum
__p__fmode
__p__commode
_amsg_exit
wcstol
_initterm
_acmdln
wcslen
exit
_ismbblead
vswprintf
wcstombs
_XcptFilter
_exit
fgets
printf
_cexit
strtok
__setusermatherr
__getmainargs
toupper

user32

OpenInputDesktop
CreatePopupMenu
ShowCaret
SetMenuItemInfoW
DialogBoxIndirectParamW
ShowOwnedPopups
TrackPopupMenu
GetLastActivePopup
InflateRect
GetMenuCheckMarkDimensions
DestroyIcon
DestroyWindow
SendDlgItemMessageA
UnloadKeyboardLayout
AdjustWindowRectEx
SendNotifyMessageW
MapDialogRect
ShowCursor
DefDlgProcA
LoadMenuW
FrameRect
CharNextA
DrawStateW
CreateCaret
GetMessageW
CreateAcceleratorTableW
GetKeyboardLayoutList
DeferWindowPos
PostQuitMessage
CreateDialogParamA
CallWindowProcA
GetMessageA
CharToOemW
GetDlgCtrlID
SendMessageA
SetCaretPos

gdi32

PathToRegion
GetPixel
GetTextCharsetInfo
Ellipse
Rectangle
SelectObject
StretchBlt
GetROP2
SetRectRgn
SetDIBColorTable
EndPath
CreatePolygonRgn
ResizePalette
GetRgnBox
SetBitmapBits

kernel32

GetComputerNameA
GetFullPathNameA
FlushViewOfFile
GetFileType
CreateFileA
ClearCommError
HeapReAlloc
CreateNamedPipeA
MoveFileExW
GetCommModemStatus
SetWaitableTimer
SearchPathA
IsBadWritePtr
QueryDosDeviceW
SetLastError
lstrcpyW
LocalFree

Exports

Exports

?CreateEventJUDhfjkldf@@YGKEPA_WG@Z

Sections

.text
Size: 178KB - Virtual size: 178KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idat
Size: 512B - Virtual size: 400B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.diag_x
Size: 512B - Virtual size: 28B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.div
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.diag_y
Size: 512B - Virtual size: 91B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.imul
Size: 512B - Virtual size: 118B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.plus
Size: 1024B - Virtual size: 581B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.minus
Size: 512B - Virtual size: 140B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

06855c383c0f85ef8a11c026dad2c3ca

Headers

File Characteristics

Imports

comdlg32

msvcrt

user32

gdi32

kernel32

Exports

Exports

Sections

.text Size: 178KB - Virtual size: 178KB

.idat Size: 512B - Virtual size: 400B

.diag_x Size: 512B - Virtual size: 28B

.data Size: 2KB - Virtual size: 2KB

.div Size: 2KB - Virtual size: 2KB

.diag_y Size: 512B - Virtual size: 91B

.imul Size: 512B - Virtual size: 118B

.plus Size: 1024B - Virtual size: 581B

.minus Size: 512B - Virtual size: 140B

.rsrc Size: 28KB - Virtual size: 28KB

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 178KB - Virtual size: 178KB

.idat
Size: 512B - Virtual size: 400B

.diag_x
Size: 512B - Virtual size: 28B

.data
Size: 2KB - Virtual size: 2KB

.div
Size: 2KB - Virtual size: 2KB

.diag_y
Size: 512B - Virtual size: 91B

.imul
Size: 512B - Virtual size: 118B

.plus
Size: 1024B - Virtual size: 581B

.minus
Size: 512B - Virtual size: 140B

.rsrc
Size: 28KB - Virtual size: 28KB

.reloc
Size: 2KB - Virtual size: 1KB