07ed0b03ba40c8aee751a980777fc17c

Sharing

Copy URL

Twitter E-mail

General

Target

07ed0b03ba40c8aee751a980777fc17c
Size

870KB
MD5

07ed0b03ba40c8aee751a980777fc17c
SHA1

c4ec57b1ce2a7505bce7b5d8524c7cc5f1c5b2c3
SHA256

53a82dd7f0cd55273745ea7fbadd96f5c23c259473a75dfab674c14b9056c890
SHA512

8ec9c806c1add39701915ae32d498ed7e326eaadb326d16303d6cbd2067a980e91f6373a44df6ade693ca8220ec2c86b7a39905c7ffa58ca416b99011b9a1066
SSDEEP

24576:MfTAch8FsE/k6/zapHbZBYSnA0toS0xzs:MfcXFsELzWd5Gs

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
07ed0b03ba40c8aee751a980777fc17c

Files

07ed0b03ba40c8aee751a980777fc17c
.exe windows:4 windows x86 arch:x86

2033a1f71307f9eb8316bc1708b81d9d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

RtlUnwind
GetCPInfo
GetOEMCP
GetCurrentDirectoryA
TlsGetValue
GetProcessVersion
RaiseException
ExitProcess
GetStartupInfoA
GetCommandLineA
SetEnvironmentVariableA
SetErrorMode
SetCurrentDirectoryA
LocalReAlloc
SetStdHandle
GetFileType
GetTimeZoneInformation
GetSystemTime
GetLocalTime
GetACP
HeapReAlloc
HeapSize
LCMapStringA
TlsSetValue
HeapFree
GlobalReAlloc
HeapAlloc
TlsFree
InterlockedIncrement
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
HeapDestroy
HeapCreate
VirtualFree
CompareStringA
CompareStringW
VirtualAlloc
IsBadWritePtr
IsBadReadPtr
IsBadCodePtr
SetFileAttributesA
GetTempPathA
DeleteFileA
WriteFile
ReadFile
GetFileSize
GlobalHandle
TlsAlloc
LocalAlloc
SizeofResource
GlobalFlags
MulDiv
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
InitializeCriticalSection
GetFullPathNameA
GetVolumeInformationA
MoveFileA
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
DuplicateHandle
SetFileTime
SystemTimeToFileTime
LocalFileTimeToFileTime
GetFileTime
lstrcpynA
FileTimeToLocalFileTime
FileTimeToSystemTime
FindNextFileA
FindFirstFileA
FindClose
GlobalAlloc
lstrcmpA
GetCurrentThread
LocalFree
GetVersion
lstrcatA
GetCurrentThreadId
GlobalAddAtomA
GetStringTypeA
GlobalGetAtomNameA
CopyFileA
SetFilePointer
lstrcmpiA
GetStringTypeW
lstrcpyA
GlobalFindAtomA
GetDiskFreeSpaceA
GlobalDeleteAtom
GlobalUnlock
GetModuleHandleA
GlobalLock
FindResourceA
GlobalFree
LockResource
InterlockedDecrement
LoadResource
MultiByteToWideChar
SetUnhandledExceptionFilter
CreateFileMappingA
MapViewOfFile
GetProcAddress
UnmapViewOfFile
SetVolumeLabelA
GetDriveTypeA
CreateDirectoryA
GetFileAttributesA
GetCurrentProcess
SetLastError
WaitForSingleObject
GetPrivateProfileSectionA
WritePrivateProfileStringA
GetPrivateProfileStringA
lstrlenA
UnhandledExceptionFilter
FreeEnvironmentStringsA
LCMapStringW
GetModuleFileNameA
OpenProcess
LoadLibraryA
GetVersionExA
FreeLibrary
CloseHandle
TerminateProcess
GetProfileStringA
WideCharToMultiByte
GetLastError
CreateSemaphoreA
CreateFileA
Sleep
GetSystemDirectoryA

user32

PostQuitMessage
SetCursor
ValidateRect
TranslateMessage
GetDC
GetMessageA
CharUpperA
GetClassNameA
PtInRect
ClientToScreen
GetWindowDC
BeginPaint
EndPaint
TabbedTextOutA
DrawTextA
GrayStringA
LoadCursorA
GetSysColorBrush
DestroyMenu
InflateRect
GetMenuCheckMarkDimensions
ReleaseDC
InvalidateRect
GetSysColor
PeekMessageA
DispatchMessageA
GetFocus
SetFocus
AdjustWindowRectEx
ScreenToClient
GetClientRect
CopyRect
GetCapture
MapWindowPoints
wsprintfA
GetMenuState
LoadBitmapA
GetMenu
GetMenuItemCount
GetMenuItemID
GetWindowTextLengthA
GetKeyState
DefWindowProcA
CreateWindowExA
SetWindowsHookExA
CallNextHookEx
GetClassLongA
SetPropA
UnhookWindowsHookEx
GetPropA
CallWindowProcA
RemovePropA
GetMessageTime
GetMessagePos
GetLastActivePopup
GetForegroundWindow
GetWindow
SetWindowLongA
SetWindowPos
RegisterWindowMessageA
OffsetRect
IntersectRect
SystemParametersInfoA
GetWindowPlacement
GetWindowRect
GetNextDlgTabItem
EndDialog
GetActiveWindow
SetActiveWindow
GetSystemMetrics
CreateDialogIndirectParamA
DestroyWindow
GetParent
GetWindowLongA
GetDlgItem
IsWindowEnabled
LoadStringA
OemToCharA
PostMessageA
GetWindowThreadProcessId
GetCursorPos
WindowFromPoint
MessageBoxA
LoadIconA
IsWindow
IsWindowVisible
SetForegroundWindow
IsIconic
SetWindowTextA
IsDialogMessageA
UpdateWindow
SendDlgItemMessageA
ModifyMenuA
SetMenuItemBitmaps
CheckMenuItem
EnableMenuItem
ShowWindow
GetClassInfoA
RegisterClassA
GetTopWindow
WinHelpA
EnumWindows
EnableWindow
KillTimer
SetTimer
SendMessageA
GetSubMenu
GetDlgCtrlID
GetWindowTextA
UnregisterClassA
HideCaret
ShowCaret
ExcludeUpdateRgn
DrawFocusRect
DefDlgProcA
CharNextA
IsWindowUnicode

gdi32

SetTextColor
SetBkColor
GetObjectA
CreateBitmap
PatBlt
DeleteObject
SelectObject
GetDeviceCaps
GetStockObject
DeleteDC
SaveDC
RestoreDC
SetBkMode
SetMapMode
OffsetViewportOrgEx
SetViewportExtEx
SetViewportOrgEx
SetWindowExtEx
IntersectClipRect
CreateSolidBrush
PtVisible
RectVisible
TextOutA
ExtTextOutA
Escape
CreateDIBitmap
CreateCompatibleDC
BitBlt
ScaleViewportExtEx
ScaleWindowExtEx
GetTextExtentPointA
GetClipBox

comdlg32

GetFileTitleA

winspool.drv

ClosePrinter
DocumentPropertiesA
OpenPrinterA

advapi32

LookupPrivilegeValueA
OpenProcessToken
RegCloseKey
AdjustTokenPrivileges
RegCreateKeyExA
RegSetValueExA
RegOpenKeyExA
RegQueryValueExA

shell32

Shell_NotifyIconA
ShellExecuteA
SHBrowseForFolderA
SHGetPathFromIDListA
SHGetMalloc

comctl32

ord17

wsock32

WSAStartup
WSACleanup

Sections

.text
Size: 156KB - Virtual size: 155KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 32KB - Virtual size: 30KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

2033a1f71307f9eb8316bc1708b81d9d

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

wsock32

Sections

.text Size: 156KB - Virtual size: 155KB

.rdata Size: 32KB - Virtual size: 30KB

.data Size: 16KB - Virtual size: 31KB

.rsrc Size: 16KB - Virtual size: 56KB

.text
Size: 156KB - Virtual size: 155KB

.rdata
Size: 32KB - Virtual size: 30KB

.data
Size: 16KB - Virtual size: 31KB

.rsrc
Size: 16KB - Virtual size: 56KB