0a0577e194e33d84c54eb4a5022e4e24

Sharing

Copy URL Twitter E-mail

General

Target

0a0577e194e33d84c54eb4a5022e4e24
Size

91KB
MD5

0a0577e194e33d84c54eb4a5022e4e24
SHA1

856c4664a33a3760bf39204f8ef91a2907a18ce0
SHA256

cf2ed8d8b4d39f07cc2b2737c1bc5489bc4b9f7904ed1c0b777810b48741b26d
SHA512

b031ffb2105bf29410a6487a4fcbf0f304caa6a60f69dc61c55a7659a662c518ff641288a4bdd8244929da8d9710c9e89877844ab7ae551c7314a9d3224637b3
SSDEEP

1536:ii5KRMpZ8k8NhkR0ZFzkSCga/XTx+xFJUM/jHUdBs5lZ7ZC3c2vu:iigRMT8BkRsFzlCPTqh/odylZQ6

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0a0577e194e33d84c54eb4a5022e4e24

Files

0a0577e194e33d84c54eb4a5022e4e24
.exe windows:4 windows x86 arch:x86

ac6b1ab994ab2c81c127beed9b2ba959

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

IsRectEmpty
DefWindowProcA
DrawTextA
IsWindowUnicode
DrawIconEx
SetWindowLongA
PeekMessageW
GetWindowRect
GetWindowLongW
SetParent
MessageBeep
PostMessageA
RedrawWindow
GetSubMenu
LoadStringA
GetLastActivePopup
EqualRect
GetMenuItemID
LoadKeyboardLayoutA
InsertMenuItemA
KillTimer
IsDialogMessageA
TranslateMessage
DispatchMessageW
GetKeyboardLayout
SetForegroundWindow
GetDesktopWindow
IntersectRect
FillRect
GetWindowDC
GetScrollInfo
IsDialogMessageW
ChildWindowFromPoint
GetSysColor
IsWindowVisible
LoadBitmapA
RegisterClassA
DrawMenuBar
CheckMenuItem
GetClassLongA
GetMenuItemCount
GetPropA
OffsetRect
ShowWindow
DefFrameProcA
GetMenu
GetMenuState
IsWindow
RemovePropA
ClientToScreen
GetIconInfo
MessageBoxA
SetScrollRange
GetSysColorBrush
GetKeyboardType
GetWindowLongA
IsZoomed
GetWindowTextA
ScrollWindow
SetActiveWindow
OpenClipboard
SetWindowPos
EmptyClipboard
TranslateMDISysAccel
SetWindowTextA
DrawIcon
SetScrollInfo
GetTopWindow
CharUpperBuffA
MapVirtualKeyA
LoadIconA
EnumThreadWindows
DeleteMenu
CreatePopupMenu
DestroyCursor
InflateRect
GetClassInfoA
GetWindowThreadProcessId
MapWindowPoints
LoadCursorA
SetWindowsHookExA
DestroyIcon
GetWindowPlacement
CharNextA
GetKeyboardLayoutList
EnableMenuItem
SetWindowPlacement
EnumWindows
SetMenu
SystemParametersInfoA
GetMessagePos
DefMDIChildProcA
InsertMenuA
SetPropA
CreateMenu
GetScrollPos
GetCursor
GetForegroundWindow
WindowFromPoint
SetClipboardData
PeekMessageA
DispatchMessageA
EnumChildWindows
InvalidateRect
EnableScrollBar
GetCapture
AdjustWindowRectEx
GetDC
CharLowerA
UpdateWindow
CharLowerBuffA
SetCapture
RemoveMenu
FrameRect
EndPaint
IsIconic
SetRect
MoveWindow
ReleaseDC
CharNextW
GetFocus
SetMenuItemInfoA
SetFocus
GetWindow
CallWindowProcA
RegisterWindowMessageA
CloseClipboard
SendMessageW
CreateIcon
ScreenToClient
OemToCharA
CharToOemA
ShowScrollBar
EnableWindow
IsChild
PostQuitMessage
GetMenuItemInfoA
GetCursorPos
MsgWaitForMultipleObjects
CreateWindowExA
GetActiveWindow
WaitMessage
GetKeyboardLayoutNameA
RegisterClipboardFormatA
SetTimer
GetKeyState
GetMenuStringA
DrawFrameControl
DestroyMenu

kernel32

IsBadReadPtr
lstrcpynA
WideCharToMultiByte
GetVersionExA
GlobalAlloc
GetThreadLocale
GetCommandLineA
CreateEventA
GetCurrentProcess
GetLastError
GetProcAddress
FindClose
GetStartupInfoA
ExitThread
GetACP
WriteFile
GetModuleHandleA
lstrlenA
LoadLibraryA
VirtualAllocEx
ExitProcess
LoadLibraryExA

shell32

SHGetDiskFreeSpaceA
SHGetDesktopFolder

comdlg32

GetOpenFileNameA

gdi32

CreatePalette
GetBitmapBits
CreateFontIndirectA
CreateDIBitmap
CreatePenIndirect

Sections

.text
Size: 65KB - Virtual size: 65KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 1024B - Virtual size: 594B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc9
Size: 512B - Virtual size: 472B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc3
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc8
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc7
Size: 512B - Virtual size: 427B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc4
Size: 142KB - Virtual size: 141KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 976B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ac6b1ab994ab2c81c127beed9b2ba959

Headers

File Characteristics

Imports

user32

kernel32

shell32

comdlg32

gdi32

Sections

.text Size: 65KB - Virtual size: 65KB

DATA Size: 1024B - Virtual size: 594B

.rsrc9 Size: 512B - Virtual size: 472B

.rsrc3 Size: 6KB - Virtual size: 6KB

.rsrc8 Size: 2KB - Virtual size: 1KB

.rsrc7 Size: 512B - Virtual size: 427B

.rsrc4 Size: 142KB - Virtual size: 141KB

.rsrc Size: 1024B - Virtual size: 976B

.text
Size: 65KB - Virtual size: 65KB

DATA
Size: 1024B - Virtual size: 594B

.rsrc9
Size: 512B - Virtual size: 472B

.rsrc3
Size: 6KB - Virtual size: 6KB

.rsrc8
Size: 2KB - Virtual size: 1KB

.rsrc7
Size: 512B - Virtual size: 427B

.rsrc4
Size: 142KB - Virtual size: 141KB

.rsrc
Size: 1024B - Virtual size: 976B