07f6c925e22921d6fc2a4e8ddfe71269

Sharing

Copy URL

Twitter E-mail

General

Target

07f6c925e22921d6fc2a4e8ddfe71269
Size

162KB
MD5

07f6c925e22921d6fc2a4e8ddfe71269
SHA1

f702182f18e97b0479f542007503d0027006564f
SHA256

0ae6c312b12ef792f5764d5afd11e45c5c9843fe3e7391025a1891dfd9c13d2c
SHA512

82effc5680a7706ea82004371d54f529f59418a8a5d3695da144aa79ccf1dd1f0347a8c192386d3ee830bcff8f9bcdf05bd8559a410a640768f8fc3570af6df3
SSDEEP

3072:wGTe2ouuEdMrGWffRNh1lKOL8RswGTV+abvmMxGJAFsnyK4OOeAxh448+G:xOJGAZNh1/vNTVhbvJinyY+FG

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
07f6c925e22921d6fc2a4e8ddfe71269

Files

07f6c925e22921d6fc2a4e8ddfe71269
.exe windows:4 windows x86 arch:x86

d928621130ab549a8c2b39a5e65f1378

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegOpenKeyExW
RegDeleteKeyW
RegCloseKey
RegQueryValueExW
RegCreateKeyW
RegSetValueExW
RegSetValueW
RegEnumKeyExW

msimg32

AlphaBlend
TransparentBlt

ole32

CoFreeUnusedLibraries
CoUninitialize
CoInitialize
StringFromGUID2
CoCreateInstance

gdiplus

GdipGetImagePixelFormat
GdipCreateBitmapFromFile
GdipGetImageHeight
GdipGetImageWidth
GdipDisposeImage

gdi32

Polyline
GetBitmapBits
EndPath
CreatePolygonRgn
DeleteDC
CreateBitmap
CreateCompatibleDC
ExtCreatePen
SetROP2
SetStretchBltMode
PtInRegion
LineTo
CreateSolidBrush
CreateCompatibleBitmap
GetObjectType
InvertRgn
StretchBlt
DeleteObject
SelectObject
BeginPath
CreateDIBSection
StrokePath
GetDeviceCaps
CreateDCW
SetBkMode
BitBlt
CreateFontIndirectW
MoveToEx
CreatePen
GetObjectW

user32

SetCursor
SetRect
GetWindowRect
IsRectEmpty
SendMessageW
GetFocus
ReleaseCapture
GetDesktopWindow
EnableWindow
LoadCursorW
UpdateWindow
EmptyClipboard
CopyRect
GetDC
SetCapture
TranslateMessage
SetParent
OffsetRect
GetClientRect
SetClipboardData
CreatePopupMenu
GetClipboardData
TrackPopupMenuEx
CloseClipboard
wsprintfW
GetKeyState
OpenClipboard
SetRectEmpty
SetWindowPos
GetParent
FillRect
RedrawWindow
ReleaseDC
IntersectRect
ClientToScreen
PtInRect
UnionRect
IsWindow
ClipCursor
EqualRect
InvalidateRect
DestroyMenu
ScreenToClient

winmm

timeGetTime

kernel32

FindFirstFileW
SetFileAttributesW
GetFullPathNameW
InterlockedExchange
GetLocaleInfoA
ClearCommBreak
Sleep
DeleteFileW
DisableThreadLibraryCalls
GetThreadLocale
GetACP
LeaveCriticalSection
CopyFileW
WideCharToMultiByte
FindNextFileW
GetCurrentThreadId
GetProcAddress
CreateFileW
DeleteCriticalSection
ClearCommBreak
GetTickCount
CreateDirectoryW
InterlockedDecrement
LocalFree
GetSystemTimeAsFileTime
GetVersionExW
QueryPerformanceCounter
LoadLibraryW
InterlockedIncrement
OutputDebugStringW
EnumResourceNamesW
GetModuleFileNameA
LocalAlloc
ReadFile
GetVersionExA
InitializeCriticalSection
FreeLibrary
ExitProcess
GlobalAlloc
lstrlenW
RemoveDirectoryW
CloseHandle
GetCurrentProcessId
GetTempPathW
GlobalLock
lstrlenA
GlobalUnlock
GetModuleFileNameW
GetTempFileNameW
GetLastError
FindClose
ExitProcess
EnterCriticalSection
MultiByteToWideChar
GetFileAttributesExW

shell32

SHGetSpecialFolderPathW
DragQueryFileW

shlwapi

PathAppendW
PathCombineW
PathRemoveFileSpecW
PathAddBackslashW
PathIsDirectoryW
PathIsRelativeW
PathRenameExtensionW
PathRemoveBackslashW
PathFileExistsW

comctl32

ImageList_DragMove
ImageList_DragLeave
ImageList_DragEnter

Sections

.text
Size: 122KB - Virtual size: 121KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 34KB - Virtual size: 33KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsr
Size: 512B - Virtual size: 204KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d928621130ab549a8c2b39a5e65f1378

Headers

File Characteristics

Imports

advapi32

msimg32

ole32

gdiplus

gdi32

user32

winmm

kernel32

shell32

shlwapi

comctl32

Sections

.text Size: 122KB - Virtual size: 121KB

.rdata Size: 4KB - Virtual size: 4KB

.data Size: 34KB - Virtual size: 33KB

.rsr Size: 512B - Virtual size: 204KB

.text
Size: 122KB - Virtual size: 121KB

.rdata
Size: 4KB - Virtual size: 4KB

.data
Size: 34KB - Virtual size: 33KB

.rsr
Size: 512B - Virtual size: 204KB