0ab599f6a70a5db221a9a9293cfd9ed0

Sharing

Copy URL Twitter E-mail

General

Target

0ab599f6a70a5db221a9a9293cfd9ed0
Size

72KB
MD5

0ab599f6a70a5db221a9a9293cfd9ed0
SHA1

299670c3a43c3734f8af2a795991b9d0d5c68a61
SHA256

8a219a9670efd0e0b103505e0b289de9e346081082a098831d725780fccc50f1
SHA512

4827d94061d2afbfaf02733dbadf10b458e7ed536386217fbafae2fb99b837b7bd3a57deea6b381cce7d8a3d2afa49b7fd993bf1b8c99b7d840f8de6915cdd72
SSDEEP

1536:7+nO1+FZ+sHOabl2M/l2tmLYKHh0j1jdCZSd22V1boZqJ:an4g3b84QttVj1vd2i1EQ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0ab599f6a70a5db221a9a9293cfd9ed0

Files

0ab599f6a70a5db221a9a9293cfd9ed0
.exe windows:4 windows x86 arch:x86

a68c13c326c0a62931fd7d0fdcc176af

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetSystemMetrics
OpenIcon
MessageBoxA
GetForegroundWindow
GetIconInfo
SetRect
CreatePopupMenu
GetKeyboardLayout
CreateMenu
DispatchMessageA
BeginPaint
DefMDIChildProcA
SetWindowTextA
LoadCursorA
EnableWindow
GetActiveWindow
CallWindowProcA
GetMenuItemInfoA
GetWindow
PtInRect
SetScrollRange
SetWindowLongA
FindWindowA
IsWindowEnabled
GetScrollRange
GetMenuState
GetKeyState
UnhookWindowsHookEx
GetWindowTextLengthA
CharNextA
GetClassInfoA
MsgWaitForMultipleObjects
GetDesktopWindow
GetClientRect
CharUpperA
UpdateWindow
IsDlgButtonChecked
DrawFrameControl
GetKeyboardLayoutList
GetDlgItem
PostMessageA
GetDC
GetTopWindow
EnableScrollBar
CreateWindowExA
SetWindowsHookExA
CharToOemA
FillRect
ShowWindow
LoadBitmapA
SetFocus
IsWindowVisible
GetSysColor
wsprintfA
SetWindowPlacement
CloseClipboard
GetWindowRect
EnumWindows
GetCursor
SetWindowLongW
SetScrollInfo
IsZoomed
RegisterClassA
FrameRect
EnumChildWindows
IsIconic
GetKeyboardType
SetClassLongA
ScrollWindow
TranslateMessage
IsCharUpperA
MoveWindow
GetMenuStringA
SetMenuItemInfoA

kernel32

GetTickCount
GetLastError
GetUserDefaultLCID
GetThreadLocale
ExitProcess
VirtualAlloc

gdi32

CreatePalette

shell32

SHFileOperationA
Shell_NotifyIconW
SHGetFolderPathA

Exports

Exports

oth_3TkZB
tBJZLqdkAyuZM@12
_FFg0GwG0tLrDVI@20
_SfDGC
XLilbmse099
YGUh6YK4T@4
_fpZH8NWp
nHphZI@4
_xG_ZIRaCr93@12
N_X_CjbyEZ5jM
_VN4KpsA3_jiHy
NcZNn1g@4
_rziVysdloff@24
_UmWaEB@4
ilvVmSKG7u
_HXMImq7R8B@24
oT8pzO0@8
_AL5iSxma@8
_U5MDayQELf@4

Sections

.text
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 50KB - Virtual size: 66KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a68c13c326c0a62931fd7d0fdcc176af

Headers

File Characteristics

Imports

user32

kernel32

gdi32

shell32

Exports

Exports

Sections

.text Size: 12KB - Virtual size: 12KB

.rdata Size: 3KB - Virtual size: 3KB

.data Size: 50KB - Virtual size: 66KB

.rsrc Size: 4KB - Virtual size: 4KB

.text
Size: 12KB - Virtual size: 12KB

.rdata
Size: 3KB - Virtual size: 3KB

.data
Size: 50KB - Virtual size: 66KB

.rsrc
Size: 4KB - Virtual size: 4KB