ffca974ed076ff99926afc1172523c70

Sharing

Copy URL Twitter E-mail

General

Target

ffca974ed076ff99926afc1172523c70
Size

101KB
MD5

ffca974ed076ff99926afc1172523c70
SHA1

14e62d7ee0b00ac1aa8dc40d901eb4369e695d0d
SHA256

942ec686c968ccf6fb660fcdf29874442a1568b97296b2ce533ed37fa5e0b038
SHA512

4ca07339759684dde1003be28c50968ca2f5912fc64d3297cd62aba6aab6a83383778e3ccfdf78e4fd1b76c9d6dc39e62f0c6d562609c7b859410093aa2e1421
SSDEEP

1536:CUz2979lETg6eJv83PcdICv+gvo7NX1XnRY:B2rmXD3PvgvMX

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ffca974ed076ff99926afc1172523c70

Files

ffca974ed076ff99926afc1172523c70
.exe windows:4 windows x86 arch:x86

c47277ae83da88b7415cc3332ed66681

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comdlg32

GetOpenFileNameA
GetSaveFileNameA
ChooseColorA
GetFileTitleA

shell32

SHGetFileInfoA
DragQueryFileA
SHGetFolderPathA

shlwapi

PathGetCharTypeA
SHEnumValueA
PathIsContentTypeA
SHGetValueA

gdi32

SelectObject
CreateFontIndirectA
GetBitmapBits
BitBlt
SaveDC

ole32

CreateStreamOnHGlobal
CreateOleAdviseHolder
StgCreateDocfileOnILockBytes

comctl32

ImageList_Add
ImageList_Read
ImageList_DragShowNolock

kernel32

GetLastError
GetProcessHeap
VirtualAlloc
LoadLibraryA
GetACP
GetModuleHandleA

msvcrt

strncmp
memmove
memcpy
log10

user32

CharNextA
IsChild
GetMenuItemID
GetMenuItemInfoA
GetSysColorBrush
SetWindowTextA
DrawIconEx
DefWindowProcA
GetDesktopWindow
GetMenuItemCount
DefMDIChildProcA
CharLowerBuffA
GetWindowTextA
GetScrollInfo
DrawMenuBar
SetWindowLongA
DrawTextA
FindWindowA
GetDlgItem
GetDCEx
GetDC
CreatePopupMenu
SystemParametersInfoA
GetClipboardData
RegisterClassA
FrameRect
GetMenu
CreateIcon
CallNextHookEx
GetLastActivePopup
EqualRect
CharToOemA
ShowScrollBar
DispatchMessageW
EndDeferWindowPos
GetKeyState
GetCursorPos
CallWindowProcA
GetKeyNameTextA
GetMessagePos
GetMenuState
IsWindowVisible
SetCursor
GetCapture
GetWindow
GetIconInfo
GetSysColor
GetMenuStringA
GetScrollPos
GetForegroundWindow
SetWindowPos
GetScrollRange
SetTimer
IsWindowEnabled
GetParent
EnableMenuItem
HideCaret
DrawFrameControl
CreateWindowExA
BeginDeferWindowPos
EnumThreadWindows

Sections

.text
Size: 47KB - Virtual size: 47KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 49KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 776B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

c47277ae83da88b7415cc3332ed66681

Headers

File Characteristics

Imports

comdlg32

shell32

shlwapi

gdi32

ole32

comctl32

kernel32

msvcrt

user32

Sections

.text Size: 47KB - Virtual size: 47KB

.idata Size: 3KB - Virtual size: 2KB

.edata Size: 49KB - Virtual size: 48KB

.data Size: 1024B - Virtual size: 776B

.text
Size: 47KB - Virtual size: 47KB

.idata
Size: 3KB - Virtual size: 2KB

.edata
Size: 49KB - Virtual size: 48KB

.data
Size: 1024B - Virtual size: 776B