f93f06b1015ef3deafa1ba6125f199cb

Sharing

Copy URL

Twitter E-mail

General

Target

f93f06b1015ef3deafa1ba6125f199cb
Size

82KB
MD5

f93f06b1015ef3deafa1ba6125f199cb
SHA1

63ef3da43a7f6c39ed17b57db8c501e6d732e5d7
SHA256

e9dbac6c36fe82464f698d27f981f298ea69e9f82a8e441bd0a4e9906481c7ba
SHA512

ad13107c8c7adcc6624d01a6abb3298a9a02c3750c857eb1a42210f46db9d36bea381a16aeda0fd9a99a9878fa3c376dda632fee850ae3b75b0f3b91779a5b11
SSDEEP

1536:z9vXTLgfDKEc9lBAlQ5q73FF0nub7g5PFRKq1a1j68k:tcSjGlQ5qF1j68k

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f93f06b1015ef3deafa1ba6125f199cb

Files

f93f06b1015ef3deafa1ba6125f199cb
.exe windows:4 windows x86 arch:x86

344e92fc1ba8e219033718d23e2e67be

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

LineTo
MoveToEx
PatBlt
CreateFontA
GetStockObject
SetBkColor
DeleteObject
SetTextColor
TextOutA
CreateSolidBrush
CreatePen
SetBkMode
SelectObject
CreateCompatibleBitmap
CreateCompatibleDC
BitBlt

user32

PostMessageA
CharLowerBuffA
GetSystemMetrics
MessageBoxA
LoadBitmapA
LoadCursorA
PostQuitMessage
RedrawWindow
RegisterClassExA
ReleaseDC
GetSysColorBrush
GetWindowTextA
SetForegroundWindow
SetWindowLongA
SetWindowPos
SetWindowTextA
ShowWindow
TrackPopupMenu
TranslateMessage
UpdateWindow
InflateRect
InsertMenuA
GetMessageA
GetDC
GetCursorPos
FillRect
EndPaint
EndDialog
EnableWindow
DrawTextA
DrawIconEx
DrawEdge
DispatchMessageA
DialogBoxParamA
DestroyIcon
DefWindowProcA
CreateWindowExA
CreatePopupMenu
CreateMenu
CheckRadioButton
CallWindowProcA
BeginPaint
AppendMenuA
wsprintfA
GetSysColor
SendMessageA
CheckDlgButton
SetFocus
LoadImageA
LoadIconA
ModifyMenuA

kernel32

HeapFree
lstrlenA
lstrcpyA
lstrcatA
WritePrivateProfileStringA
WriteFile
SetCurrentDirectoryA
SearchPathA
GetModuleFileNameA
HeapAlloc
GetProcessHeap
GetPrivateProfileStringA
GetModuleHandleA
ExitProcess
DeleteFileA
CreateFileA
CloseHandle
MoveFileA

comctl32

ord17

comdlg32

GetOpenFileNameA

shell32

Shell_NotifyIconA
ShellAboutA
SHGetFileInfoA
ShellExecuteA

winmm

PlaySoundA

advapi32

RegCloseKey
RegCreateKeyExA
RegDeleteValueA
RegSetValueExA

Sections

.text
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 52KB - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

344e92fc1ba8e219033718d23e2e67be

Headers

File Characteristics

Imports

gdi32

user32

kernel32

comctl32

comdlg32

shell32

winmm

advapi32

Sections

.text Size: 20KB - Virtual size: 19KB

.rdata Size: 3KB - Virtual size: 2KB

.data Size: 6KB - Virtual size: 5KB

.rsrc Size: 52KB - Virtual size: 52KB

.text
Size: 20KB - Virtual size: 19KB

.rdata
Size: 3KB - Virtual size: 2KB

.data
Size: 6KB - Virtual size: 5KB

.rsrc
Size: 52KB - Virtual size: 52KB