0af137309e210d756a743e62c4f350cd

Sharing

Copy URL

Twitter E-mail

General

Target

0af137309e210d756a743e62c4f350cd
Size

142KB
MD5

0af137309e210d756a743e62c4f350cd
SHA1

60a7173f6dc6b4e88b95375d2d36d0d861af8104
SHA256

3a03cf784ef97a91cf1dcdeb42741b180e6d40b7e246c88d4fb2f2b1b7b4eecb
SHA512

c5ddbe2a7eb6a7a42c64d07bb37266dbdf2423de0d60b9e0a4dea1b042fd89de901ed86d6f413444fc0ea05928295bd852481a809f9c72351b91170dfc794145
SSDEEP

3072:qU1oOU54Hkffpofgs9VaGggzvBFU6XItOKaASo0imQEPna:AD2fgsXaGgG/qfa+EPn

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0af137309e210d756a743e62c4f350cd

Files

0af137309e210d756a743e62c4f350cd
.exe windows:5 windows x86 arch:x86

97607105fe5506710f57ec5194636b7b

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

GetDeviceCaps
GetPaletteEntries
Ellipse
CreateFontIndirectA
GetFontLanguageInfo
PlayEnhMetaFile
GdiFlush
SetPaletteEntries
GetTextMetricsA
LPtoDP
GetBkColor
GetTextAlign
GetTextColor
SetBrushOrgEx
CreateDIBitmap
SelectObject
SetWinMetaFileBits
Pie
BitBlt
SetViewportOrgEx
Polygon

oleaut32

SafeArrayPutElement
SysReAllocStringLen
VariantChangeType
SysAllocStringLen

user32

SetScrollInfo
OemToCharA
SendMessageA
FillRect
DefWindowProcA
IsIconic
GetClassNameA
SetFocus
TrackPopupMenu
GetParent
SetWindowTextW
OpenClipboard
UnhookWindowsHookEx
GetClientRect
CharToOemA
EnableWindow
DefFrameProcA
SetParent
SetMenuItemInfoA
CharLowerBuffW
SendDlgItemMessageA
InflateRect
PostMessageA
DrawIcon
GetMessageA
ScrollWindowEx
RemoveMenu
BeginPaint
RemovePropA
GetIconInfo
EndPaint
GetMenuItemCount
ReleaseDC
SetRectEmpty
GetDC
PeekMessageA
GetWindowLongW

kernel32

lstrlenW
SetEvent
GetExitCodeProcess
SetThreadLocale
VirtualQueryEx
WriteFile
CreateThread
GetProfileIntA
WaitForSingleObject
OutputDebugStringA
LocalFree
GetCPInfo
CreateFileMappingA
GlobalAlloc
lstrlenW
OpenProcess
ResetEvent
GetModuleHandleA
UnmapViewOfFile
GlobalFree
LoadResource
FindNextFileA
GetLastError
CreateFileW
LoadLibraryW
CreateFileMappingA
WaitForMultipleObjects
CreateDirectoryA
GlobalMemoryStatus
FindClose
GetSystemInfo
GetFileSize
GetCurrentProcess
FindResourceA
MapViewOfFileEx
TerminateProcess
GetVolumeInformationA
GlobalDeleteAtom
GetWindowsDirectoryA
GlobalFindAtomA
VirtualAlloc
TerminateProcess
lstrcmpA
IsValidLocale
GetVersion
MultiByteToWideChar
CloseHandle

advapi32

GetUserNameA
RegEnumValueA
RegQueryValueExW
RegQueryInfoKeyA

jet5ctrs

_FSnan
_Nan
_LNan
_FExp
_Toupper
_Cosh
_LPoly
_FXbig
_LCosh
_Getcvt

ole32

CoInitialize
IsEqualGUID
OleDraw
CoCreateInstance

wininet

FtpOpenFileA
InternetQueryOptionA
HttpSendRequestA
InternetGoOnline

comdlg32

ChooseFontA
ChooseColorA

comctl32

ImageList_DragMove

winmm

timeBeginPeriod

shell32

DragFinish

imm32

ImmSetCompositionWindow

Sections

.text
Size: 115KB - Virtual size: 116KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

97607105fe5506710f57ec5194636b7b

Headers

DLL Characteristics

File Characteristics

Imports

gdi32

oleaut32

user32

kernel32

advapi32

jet5ctrs

ole32

wininet

comdlg32

comctl32

winmm

shell32

imm32

Sections

.text Size: 115KB - Virtual size: 116KB

.rdata Size: 4KB - Virtual size: 4KB

.data Size: 20KB - Virtual size: 20KB

.rsrc Size: 2KB - Virtual size: 4KB

.text
Size: 115KB - Virtual size: 116KB

.rdata
Size: 4KB - Virtual size: 4KB

.data
Size: 20KB - Virtual size: 20KB

.rsrc
Size: 2KB - Virtual size: 4KB