03fc2b851084e15378f1379984b11e92

Sharing

Copy URL

Twitter E-mail

General

Target

03fc2b851084e15378f1379984b11e92
Size

512KB
MD5

03fc2b851084e15378f1379984b11e92
SHA1

8bc2493d52189a031efea94f400183205399840c
SHA256

89b5ed5bd9e0b8319bc2da3df85774dff6eb719d6a0f30ca04d3de9be7dfe93c
SHA512

a875065a1de9aee3dde8852d229213b93e77a84e2010eb40c7873a9daf1c21d9653b78bc946492bde3d2df9ed430cac169956739a883c0e3d9d8b9854c967173
SSDEEP

12288:l4cqMDlRD1SqNz6kmvxHVg5HasUAxn+96wRVyOIkPuP:ll3D3hz1mvx1g9sA+99RoO/Pu

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
03fc2b851084e15378f1379984b11e92

Files

03fc2b851084e15378f1379984b11e92
.exe windows:4 windows x86 arch:x86

8c71f8a00abc72440db6d64977f7cd01

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

RegisterClassExA
GetCaretPos
GetWindowLongW
ShowWindowAsync
WINNLSGetEnableStatus
CreateDialogIndirectParamW
GetMenu
DlgDirSelectExW
LoadImageW
IntersectRect
MessageBoxIndirectA
GetDesktopWindow
RegisterClassA
IsCharUpperA
GetProcessDefaultLayout
MessageBoxExA
EnableMenuItem
CallNextHookEx
SetClassLongA
SetProcessDefaultLayout
InsertMenuA
ValidateRgn
GetMessageW
InSendMessage
GetDoubleClickTime

kernel32

CompareStringW
InitializeCriticalSection
SetStdHandle
HeapAlloc
TerminateProcess
GetStringTypeW
IsBadWritePtr
GetCurrentProcessId
InterlockedExchange
ExitProcess
GetCommandLineW
GetEnvironmentStringsW
DeleteCriticalSection
QueryPerformanceCounter
lstrcat
SetEnvironmentVariableA
IsBadReadPtr
FreeEnvironmentStringsA
FindFirstFileExW
GetTickCount
GetStartupInfoW
GetLocalTime
GetSystemTime
GetCPInfo
GetModuleFileNameW
GetEnvironmentStringsA
SetFilePointer
VirtualQuery
FileTimeToSystemTime
FlushFileBuffers
VirtualAlloc
GetStartupInfoA
GetStringTypeA
SetLastError
CreateMutexA
GetVersion
GetCommandLineA
GetProcAddress
GetStdHandle
LCMapStringW
InterlockedDecrement
VirtualFree
HeapDestroy
FreeEnvironmentStringsW
ReadFile
EnterCriticalSection
GetCurrentThreadId
LoadLibraryA
HeapFree
LeaveCriticalSection
CompareStringA
GetModuleFileNameA
SetHandleCount
GetCurrentThread
GetModuleHandleA
CloseHandle
GetEnvironmentStrings
HeapReAlloc
GetSystemTimeAsFileTime
LCMapStringA
UnhandledExceptionFilter
UnmapViewOfFile
TlsGetValue
WriteFile
WideCharToMultiByte
GetTimeZoneInformation
InterlockedIncrement
RtlUnwind
HeapCreate
GetFileType
TlsSetValue
GetLastError
GetCurrentProcess
MultiByteToWideChar
TlsFree
TlsAlloc
OpenMutexA

wininet

HttpOpenRequestA
IsHostInProxyBypassList
InternetGetConnectedStateExW
FindNextUrlCacheContainerW
FtpFindFirstFileA
GopherGetAttributeA
CreateUrlCacheGroup
InternetGoOnline
DeleteUrlCacheEntry

comdlg32

ChooseColorW
ReplaceTextA
PageSetupDlgW
GetSaveFileNameW

advapi32

RegCreateKeyExA
RegReplaceKeyA
RegSetKeySecurity
RegEnumKeyW
RegSetValueExA
CryptSetProviderW
CryptDestroyKey
DuplicateTokenEx
CryptHashSessionKey
CryptSetProviderExA

comctl32

InitCommonControlsEx

gdi32

SetStretchBltMode
PlgBlt
Polyline
SetGraphicsMode
GetTextExtentPoint32W
CreateDIBSection
GetSystemPaletteUse
GetWorldTransform
GetPath
PlayMetaFileRecord
UpdateICMRegKeyA
RectInRegion
TranslateCharsetInfo
SetTextAlign
UnrealizeObject
Rectangle
CheckColorsInGamut
CreateDIBPatternBrush

Sections

.text
Size: 180KB - Virtual size: 180KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 314KB - Virtual size: 314KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8c71f8a00abc72440db6d64977f7cd01

Headers

File Characteristics

Imports

user32

kernel32

wininet

comdlg32

advapi32

comctl32

gdi32

Sections

.text Size: 180KB - Virtual size: 180KB

.rdata Size: 5KB - Virtual size: 11KB

.data Size: 314KB - Virtual size: 314KB

.rsrc Size: 10KB - Virtual size: 10KB

.text
Size: 180KB - Virtual size: 180KB

.rdata
Size: 5KB - Virtual size: 11KB

.data
Size: 314KB - Virtual size: 314KB

.rsrc
Size: 10KB - Virtual size: 10KB