03f82001c76b6bcfc50bb703ea506451

Sharing

Copy URL Twitter E-mail

General

Target

03f82001c76b6bcfc50bb703ea506451
Size

144KB
MD5

03f82001c76b6bcfc50bb703ea506451
SHA1

9f118cf4912664111424c4db0a941ea2a8478167
SHA256

baaa8126ae4dd4b2dc2a2e9a4bea352fc8fbcb7e62dc6afa7943fef2beb3d0b7
SHA512

7375f66009bd8763c90fb2ec74f0331f6ea29b0dcf3dd93f6b5133149ee85da22f03e9c37d022859aec3c95bc97bae8f201918d445b8a65cc9df424a0e5f8fe2
SSDEEP

3072:uSh2RM9kjZIoO1GjyKEyuqGZ0WI+B1gYDR6WtgO/Yum4M:B2mSZ+1GmKEyNWh1gYDR6WtbAum4

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
03f82001c76b6bcfc50bb703ea506451

Files

03f82001c76b6bcfc50bb703ea506451
.exe windows:5 windows x86 arch:x86

6d0edb8ea27fde2487536f6ad5ee83b0

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

InSendMessage
IsZoomed
IsCharLowerA
SetWindowLongW
TrackPopupMenu
LoadImageA
DrawFrameControl
SendDlgItemMessageW
IsCharAlphaW
CreateWindowExA
BringWindowToTop
InvalidateRgn
GetWindowTextA
KillTimer
GetActiveWindow
DefDlgProcA
MapVirtualKeyW
CheckMenuRadioItem
BeginDeferWindowPos
GetMessageTime
LoadImageW
GetMenuItemRect
GetMenuState
GetWindowRect
DestroyIcon
CallWindowProcW
ValidateRect
EnableWindow
GetMenuItemInfoW
DrawMenuBar
GetClientRect
InsertMenuA
GetKeyState
IsWindowEnabled
EndDialog
GetUserObjectInformationW
GetWindowModuleFileNameW
GetKeyNameTextW
ExitWindowsEx
SetDlgItemInt
FindWindowA
CheckMenuItem
SetRect
GetDoubleClickTime
OpenDesktopW
GetMenu
LoadCursorW
ReleaseDC
SendDlgItemMessageA
EqualRect
IsIconic
ChildWindowFromPointEx
SetUserObjectInformationW
FindWindowExA
CopyImage
GetGUIThreadInfo
AdjustWindowRectEx
EnableScrollBar
wvsprintfA
LoadAcceleratorsW
CreateWindowExW
GetUpdateRect
MessageBoxExA
GetForegroundWindow
LoadAcceleratorsA
RemoveMenu
FrameRect
TranslateMessage
SetWindowTextA
mouse_event
GetMenuItemCount
GetCaretBlinkTime
IsWindowUnicode
SystemParametersInfoA
GetClassLongW
DefDlgProcW
WaitMessage
SetWindowTextW
ArrangeIconicWindows
ScreenToClient
GetFocus
GetScrollRange
RegisterHotKey
CreateDialogParamW
OffsetRect
CreatePopupMenu
InsertMenuItemW
GetMenuItemID
PostQuitMessage
MapDialogRect
DefFrameProcA
AdjustWindowRect
SetLastErrorEx
GetSystemMetrics
GetWindowLongA
MessageBoxW
GetShellWindow
IsMenu
GetWindowTextW
GetMessagePos
CharPrevA
CharToOemW
RegisterClassA
DestroyAcceleratorTable
DragObject
DeleteMenu
SetRectEmpty
CharNextA
RegisterClassW
SendInput
GetKeyboardLayoutList
DestroyCursor
GetCursorPos
SetCursor
CharNextExA
GetClassLongA
DrawTextW
DestroyCaret
InflateRect
SetDlgItemTextA
SetCursorPos
GetPropW
RemovePropW
UnloadKeyboardLayout

kernel32

MoveFileExW
OpenSemaphoreW
FileTimeToSystemTime
LocalSize
HeapAlloc
GetFileType
ReleaseMutex
GetModuleFileNameA
GetLocaleInfoW
GetProcessHeap
GetTickCount
ConnectNamedPipe
SetSystemTime
GetTempFileNameA
LocalUnlock
CallNamedPipeW
CreateSemaphoreA
FindResourceW
GetTempPathA
SizeofResource
UnmapViewOfFile
InitializeCriticalSection
IsBadWritePtr
GetCurrentThreadId
GetBinaryTypeA
GetLocalTime
WaitForSingleObject
CreateThread
TlsFree
UnlockFile
SearchPathA
GetComputerNameA
LoadLibraryA
HeapLock
FindFirstChangeNotificationW
OpenFile
GetFileSize
GetAtomNameW
SetHandleInformation
GlobalLock
OpenEventW
CompareFileTime
OpenFileMappingW
GetModuleHandleA
LoadResource
QueryDosDeviceW
FileTimeToDosDateTime
lstrcmpiW
GlobalFree
HeapFree
FlushViewOfFile
GetComputerNameW
SetFileAttributesA
HeapCreate
GetProcAddress
FileTimeToLocalFileTime
SetLastError
HeapWalk
LocalLock

shlwapi

StrToIntW

msvcrt

gmtime
_controlfp
localtime
printf
strcpy
__set_app_type
system
puts
towupper
__p__fmode
swscanf
iswalpha
wcslen
atol
__p__commode
strcoll
fprintf
putchar
malloc
wcstod
iswxdigit
_amsg_exit
sscanf
memset
strcspn
_initterm
fputs
fgets
putc
_ismbblead
clock
islower
_XcptFilter
wcscspn
isalnum
free
_exit
mktime
_cexit
isdigit
__setusermatherr
mbtowc
rand
strncmp
setvbuf
strstr
__getmainargs
perror

Exports

Exports

?GenericOutputInfoYSUh@@YGK_KHE[D

Sections

.text
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 21KB - Virtual size: 145KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 111KB - Virtual size: 110KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6d0edb8ea27fde2487536f6ad5ee83b0

Headers

File Characteristics

Imports

user32

kernel32

shlwapi

msvcrt

Exports

Exports

Sections

.text Size: 8KB - Virtual size: 8KB

.data Size: 21KB - Virtual size: 145KB

.rsrc Size: 111KB - Virtual size: 110KB

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 8KB - Virtual size: 8KB

.data
Size: 21KB - Virtual size: 145KB

.rsrc
Size: 111KB - Virtual size: 110KB

.reloc
Size: 2KB - Virtual size: 1KB