097267b75ea57ed1bec2e9851f67d904

Sharing

Copy URL Twitter E-mail

General

Target

097267b75ea57ed1bec2e9851f67d904
Size

383KB
MD5

097267b75ea57ed1bec2e9851f67d904
SHA1

157ab8473533f0269a405fd71b63fecc2a41a509
SHA256

9f1067bdeb5ed88c6c9842474a5d2771df28f6c7cbde82825c9c995f0ac36a7a
SHA512

d740392739d908e8360c5b0d041f864b220ae87bf5ba9fffbfbb024f24cdd19bcab23232f2ffb03df93a091c967ec512a9ba6612e4cefc3b4ed323c31a7b85ce
SSDEEP

6144:SHYV1ZcRMkxDz6uKTD39+jDLuitfAIFAQME0huovEcD:SHM1WRVxDWTTDwDprAQGTE

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
097267b75ea57ed1bec2e9851f67d904

Files

097267b75ea57ed1bec2e9851f67d904
.exe windows:4 windows x86 arch:x86

b8479d4fd95de0c5ac5bd5765857713f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

shell32

DragQueryFileW
SHLoadInProc
SHGetInstanceExplorer

kernel32

GetACP
GetUserDefaultLCID
DeleteCriticalSection
GetDateFormatA
FreeLibraryAndExitThread
ExitThread
GetLastError
VirtualProtect
EnterCriticalSection
GetDateFormatW
CompareStringA
CompareStringW
VirtualAlloc
GetCurrentThreadId
GetConsoleMode
GetEnvironmentStrings
TlsAlloc
GetProfileSectionA
GetProcAddress
IsValidCodePage
GetPrivateProfileStructA
SetLastError
HeapAlloc
GetTimeZoneInformation
QueryPerformanceCounter
GetModuleHandleA
SetFilePointer
UnhandledExceptionFilter
LoadLibraryA
IsValidLocale
GetEnvironmentStringsW
GlobalReAlloc
CreateThread
GetAtomNameW
WaitNamedPipeA
SetStdHandle
TlsGetValue
GetStringTypeW
GetVersionExA
GetOEMCP
GetCurrentProcess
SetLocaleInfoA
WaitForDebugEvent
GetCommandLineA
LCMapStringW
GetCPInfo
TerminateProcess
WriteFile
HeapFree
EnumSystemLocalesA
ReadFile
MultiByteToWideChar
HeapCreate
GetTempFileNameW
SetHandleCount
SetThreadAffinityMask
WideCharToMultiByte
FlushFileBuffers
GetSystemInfo
TlsFree
lstrlenW
TlsSetValue
HeapDestroy
InitializeCriticalSection
HeapReAlloc
ReadConsoleOutputCharacterA
LCMapStringA
GetFileSize
GetStdHandle
GetFileType
GetLogicalDriveStringsA
GetSystemTimeAsFileTime
GetTickCount
InterlockedExchange
CreateMutexA
GetCurrentProcessId
SetEnvironmentVariableA
GetTimeFormatA
RtlUnwind
CloseHandle
GetFullPathNameA
HeapSize
GlobalGetAtomNameW
GetFileAttributesExW
IsBadReadPtr
OpenMutexA
FoldStringA
GetLocaleInfoA
GlobalDeleteAtom
GetStartupInfoA
MapViewOfFileEx
FreeEnvironmentStringsW
VirtualFree
CreateEventA
VirtualQuery
EnumDateFormatsW
GetModuleFileNameA
GetStringTypeA
GetCurrentThread
IsBadWritePtr
FreeEnvironmentStringsA
LeaveCriticalSection
WriteConsoleOutputA
GetComputerNameA
ExitProcess
GetLocaleInfoW

comctl32

ImageList_Merge
DrawStatusTextA
CreatePropertySheetPageW
CreateToolbar
ImageList_AddIcon
ImageList_Copy
ImageList_DragLeave
ImageList_Remove
ImageList_DrawIndirect
ImageList_SetFilter
ImageList_GetImageInfo
ImageList_ReplaceIcon
InitCommonControlsEx
DrawStatusText
ImageList_SetFlags
MakeDragList
DrawInsert
CreateStatusWindowW
ImageList_AddMasked
ImageList_GetFlags
GetEffectiveClientRect
ImageList_GetBkColor
CreateStatusWindow
CreateUpDownControl
ImageList_Destroy

user32

GetWindow
CharLowerA
ModifyMenuW
ChangeDisplaySettingsW
RegisterClassExA
GetParent
SetCursor
TranslateMDISysAccel
GetWindowPlacement
GetScrollBarInfo
RegisterHotKey
DestroyWindow
RegisterWindowMessageW
LookupIconIdFromDirectory
EnumWindows
SetClassWord
SetFocus
AdjustWindowRectEx
UnhookWindowsHookEx
MessageBoxW
SetClassLongA
WinHelpA
GetAsyncKeyState
RegisterClipboardFormatA
EditWndProc
ScrollWindowEx
DestroyAcceleratorTable
TrackPopupMenuEx
LoadAcceleratorsW
DdeFreeStringHandle
DefWindowProcW
GetMessageW
MessageBoxExW
SetMenuItemBitmaps
ShowWindowAsync
SetClipboardData
OemToCharW
DdeKeepStringHandle
ChildWindowFromPointEx
ShowWindow
LoadCursorW
SetWindowLongW
GetWindowModuleFileNameW
GetClassInfoExA
IsCharUpperW
CharToOemW
IsDlgButtonChecked
GetWindowLongA
DdeInitializeW
ChangeMenuW
DdeUnaccessData
MessageBeep
BringWindowToTop
CreateDialogParamW
GetCursorInfo
AdjustWindowRect
RemovePropA
PeekMessageA
DlgDirSelectComboBoxExW
DrawFrameControl
CreateWindowExW
GetSystemMetrics
RegisterClassA
SystemParametersInfoW
DdeNameService
MessageBoxIndirectA

gdi32

RemoveFontResourceW
GetBitmapBits
GetRasterizerCaps
ScaleViewportExtEx
DeleteObject
SetBitmapBits
ResetDCA
OffsetWindowOrgEx
GetPixel
Rectangle
OffsetViewportOrgEx
GetTextFaceW
GetObjectA
SelectObject
PolyBezier
SetStretchBltMode
GetDeviceCaps
CreateDCA
ScaleWindowExtEx
SetColorSpace
GetCharWidthFloatW
GetTextExtentPoint32A
StrokeAndFillPath
CreateICW
DeleteDC
PlgBlt
CreateICA
CloseFigure

Sections

.text
Size: 150KB - Virtual size: 150KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 74KB - Virtual size: 73KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 90KB - Virtual size: 113KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 67KB - Virtual size: 67KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b8479d4fd95de0c5ac5bd5765857713f

Headers

File Characteristics

Imports

shell32

kernel32

comctl32

user32

gdi32

Sections

.text Size: 150KB - Virtual size: 150KB

.rdata Size: 74KB - Virtual size: 73KB

.data Size: 90KB - Virtual size: 113KB

.rsrc Size: 67KB - Virtual size: 67KB

.text
Size: 150KB - Virtual size: 150KB

.rdata
Size: 74KB - Virtual size: 73KB

.data
Size: 90KB - Virtual size: 113KB

.rsrc
Size: 67KB - Virtual size: 67KB