039d57af8e0ee4ce4f4473670e0824bc

Sharing

Copy URL

Twitter E-mail

General

Target

039d57af8e0ee4ce4f4473670e0824bc
Size

556KB
MD5

039d57af8e0ee4ce4f4473670e0824bc
SHA1

7e82465315cbde861506c7c0aa88dc28abc06deb
SHA256

a20a88f60083a1929a15d1b5b2d9d716b2cd1e2c39526cb63dc13f5bd0f0ea8a
SHA512

3d6528866c5bdd32f0c7233e45a4d76086353c059730162e68bd7ac61b1e418d3c5a7e41858d551d1422d1ec633ea9930f111e9f9d5690ccc84624195cc4726c
SSDEEP

12288:qKx2X5dAxjDdDRmI8jVklDoNnBm09QWkj7qW:opG97mIYVJNs09QB7D

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
039d57af8e0ee4ce4f4473670e0824bc

Files

039d57af8e0ee4ce4f4473670e0824bc
.exe windows:4 windows x86 arch:x86

122cd2c17e1fcd1d9a57d70f85accbf1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

DrawInsert
ImageList_DragMove
ImageList_Read
ImageList_SetIconSize
InitMUILanguage
ImageList_GetIconSize
CreateStatusWindowA
CreateUpDownControl
InitCommonControlsEx
ImageList_Duplicate
ImageList_GetImageInfo
DestroyPropertySheetPage
ImageList_LoadImageA
ImageList_LoadImageW
ImageList_SetBkColor
CreateStatusWindowW
CreateToolbar
ImageList_GetImageRect
ImageList_GetDragImage
ImageList_DragEnter
CreatePropertySheetPageA
CreatePropertySheetPage
ImageList_GetIcon

kernel32

GetStdHandle
RtlUnwind
TlsAlloc
GetProcAddress
ExpandEnvironmentStringsA
VirtualLock
HeapCreate
FormatMessageW
FlushConsoleInputBuffer
TlsSetValue
lstrcmpW
GetVersion
FreeEnvironmentStringsA
VirtualFree
FileTimeToDosDateTime
lstrlenA
VirtualQuery
GetLastError
FlushFileBuffers
SetLastError
WriteConsoleInputW
ReadFile
InterlockedIncrement
lstrcpynA
GetSystemTime
GetModuleFileNameW
WriteFile
GetStringTypeW
GetCompressedFileSizeA
FoldStringA
LCMapStringA
HeapReAlloc
SetEnvironmentVariableW
GetEnvironmentStrings
SetThreadPriority
CreateFileW
EnumResourceLanguagesA
GetTimeFormatW
IsBadWritePtr
GetCurrentThread
LocalUnlock
LoadLibraryA
GetLocalTime
GetEnvironmentStringsW
CopyFileExA
VirtualAlloc
HeapFree
GetCPInfo
GetModuleFileNameA
CreateEventA
EnterCriticalSection
UnhandledExceptionFilter
MultiByteToWideChar
GetStartupInfoA
GetCurrentProcess
TerminateProcess
DuplicateHandle
lstrcpyW
MoveFileExW
ResumeThread
SetFilePointer
SuspendThread
GetTickCount
DosDateTimeToFileTime
LeaveCriticalSection
GetProfileStringA
ExitProcess
CreateProcessW
QueryPerformanceCounter
GetProfileIntW
GetCalendarInfoA
IsValidLocale
OpenMutexA
GetCurrentProcessId
EnumDateFormatsW
GetModuleHandleA
GetThreadTimes
CompareStringA
GetConsoleCursorInfo
TlsGetValue
EnumResourceNamesA
FreeEnvironmentStringsW
GetDiskFreeSpaceExA
GetCommandLineW
SetThreadLocale
GetFileType
GetStringTypeA
CreatePipe
SetEnvironmentVariableA
InterlockedExchange
InitializeCriticalSection
LCMapStringW
CloseHandle
GetConsoleTitleW
GetThreadPriority
GetSystemTimeAsFileTime
WritePrivateProfileStructW
WideCharToMultiByte
CompareStringW
DeleteCriticalSection
GetTimeZoneInformation
GetStartupInfoW
MapViewOfFile
SetHandleCount
CreateMutexA
GetCommandLineA
HeapDestroy
GetProcessHeap
GetCurrentThreadId
InterlockedDecrement
WriteConsoleA
LoadLibraryExW
FindFirstFileW
CreateSemaphoreA
HeapAlloc
LockFileEx
TlsFree
FindNextFileW
RtlFillMemory
EnumSystemCodePagesW
SetStdHandle

advapi32

RegCreateKeyA
InitiateSystemShutdownA
RegQueryValueW
RegQueryInfoKeyA
CryptDeriveKey
LookupSecurityDescriptorPartsA
RegSetValueA
GetUserNameW
RegLoadKeyA

user32

CreateCaret
DestroyWindow
GetListBoxInfo
GetMenuItemID
DefFrameProcW
BringWindowToTop
IsCharAlphaNumericW
SetScrollInfo
CreateIcon
RegisterClassExA
SetShellWindow
SetLastErrorEx
WindowFromPoint
GetMenuItemInfoA
ShowWindow
GetKeyNameTextA
GetAsyncKeyState
SetWindowsHookW
GetKeyboardType
EnumWindowStationsW
CharToOemBuffW
DlgDirListA
GetClassNameA
PostMessageA
LoadKeyboardLayoutA
SendMessageTimeoutA
GetClassInfoExA
WinHelpW
BeginPaint
LoadIconW
RegisterClassA
PostThreadMessageA
MessageBoxW
FindWindowExW
EnumDisplaySettingsA
wsprintfW
DrawFrameControl
GetUpdateRect
IsCharAlphaNumericA
GetClassInfoA
CreateWindowStationA
CharUpperBuffW
GetCursor
GetScrollRange
BeginDeferWindowPos
CreateWindowExW
PostThreadMessageW
SystemParametersInfoA
CharLowerA
DefWindowProcA
EnumWindows
IsCharAlphaW

Sections

.text
Size: 172KB - Virtual size: 168KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 248KB - Virtual size: 244KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 112KB - Virtual size: 122KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 20KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

122cd2c17e1fcd1d9a57d70f85accbf1

Headers

File Characteristics

Imports

comctl32

kernel32

advapi32

user32

Sections

.text Size: 172KB - Virtual size: 168KB

.rdata Size: 248KB - Virtual size: 244KB

.data Size: 112KB - Virtual size: 122KB

.rsrc Size: 20KB - Virtual size: 17KB

.text
Size: 172KB - Virtual size: 168KB

.rdata
Size: 248KB - Virtual size: 244KB

.data
Size: 112KB - Virtual size: 122KB

.rsrc
Size: 20KB - Virtual size: 17KB