2028889e970cdc0c06b80f57b8ffdcb3

Sharing

Copy URL Twitter E-mail

General

Target

2028889e970cdc0c06b80f57b8ffdcb3
Size

174KB
MD5

2028889e970cdc0c06b80f57b8ffdcb3
SHA1

d5bffd7e8a562cb9c2fa93e34bc27b2bf17684da
SHA256

4325bd4a8fd4580a8e263dc0a0f3cb5cad6eb38c2514845499135b602006680f
SHA512

5c282bb034a817895aec36f7aa70b815b97e52940b040e0fc1e95fd5fdb674ffe389dcab334d470934505b15d0dea11ddc08742c22ebb5cfabcd6305986e04c2
SSDEEP

3072:55K+vGgivU2J/qUwd2Uonpsgc03GA9Ofi5l1yESC88mxzz5dIYE4pXfsO:DKCTzQ02UonPV5iEI8KX5mYds

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2028889e970cdc0c06b80f57b8ffdcb3

Files

2028889e970cdc0c06b80f57b8ffdcb3
.exe windows:4 windows x86 arch:x86

c756942c34df495f00a20fe715c2917c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdiplus

GdipGetImageWidth
GdipGetImageHeight
GdipCreateBitmapFromFile
GdipGetImagePixelFormat
GdipDisposeImage

gdi32

BitBlt
StretchBlt
SelectObject
CreatePen
CreateDIBSection
GetObjectType
CreateCompatibleDC
DeleteDC
CreateDCW
LineTo
SetStretchBltMode
CreateBitmap

msimg32

AlphaBlend
TransparentBlt

ole32

CoUninitialize
CoFreeUnusedLibraries
StringFromGUID2
CoInitialize
CoCreateInstance

winmm

timeGetTime

advapi32

RegQueryValueExW
RegCloseKey
RegCreateKeyW
RegSetValueW
RegSetValueExW
RegOpenKeyExW
RegDeleteKeyW
RegEnumKeyExW

kernel32

QueryPerformanceCounter
CreateFileW
WaitCommEvent
GetVersionExA
GetFullPathNameW
CopyFileW
WaitCommEvent
GlobalUnlock
GetCurrentProcessId
GetModuleFileNameA
ReadFile
SetFileAttributesW
LocalAlloc
GetACP
EnumResourceNamesW
GlobalLock
LocalFree
CloseHandle
GlobalAlloc
InterlockedExchange
ExitProcess
OutputDebugStringW
CreateDirectoryW
DisableThreadLibraryCalls
GetTickCount
GetSystemTimeAsFileTime
ExitProcess
LoadLibraryW
GetLastError
GetCurrentThreadId
GetLocaleInfoA

comctl32

ImageList_DragLeave
ImageList_DragMove
ImageList_DragEnter

user32

SetWindowPos
IsWindow
SetCursor
ClipCursor
GetDesktopWindow
GetFocus
SetParent
DestroyMenu
LoadCursorW
EnableWindow
TrackPopupMenuEx
InvalidateRect
CreatePopupMenu
RedrawWindow
PtInRect

Sections

.text
Size: 132KB - Virtual size: 131KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 38KB - Virtual size: 37KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsr
Size: 512B - Virtual size: 208KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c756942c34df495f00a20fe715c2917c

Headers

File Characteristics

Imports

gdiplus

gdi32

msimg32

ole32

winmm

advapi32

kernel32

comctl32

user32

Sections

.text Size: 132KB - Virtual size: 131KB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 38KB - Virtual size: 37KB

.rsr Size: 512B - Virtual size: 208KB

.text
Size: 132KB - Virtual size: 131KB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 38KB - Virtual size: 37KB

.rsr
Size: 512B - Virtual size: 208KB