0dd446f3a93e08276c9d62ca0c65c19c

Sharing

Copy URL Twitter E-mail

General

Target

0dd446f3a93e08276c9d62ca0c65c19c
Size

652KB
MD5

0dd446f3a93e08276c9d62ca0c65c19c
SHA1

8db56296a444f7f82848069aff5b22f6e9571a5a
SHA256

ecc70b2bcc554ac6abfa448bd8d520815d139705cd461202d80e2de52b83e32d
SHA512

b54156b9166740edab1ce07054f46a76428bae08b67ef5ae7357f0b4911c3fdf12add1978b9fcaeec425c1b4e4e50b982b2febf665af8d63c8a4c8800cff4bac
SSDEEP

12288:TvP3WWGOk1ejSco/1sDhDXjkAE/EeKEC8dpvL1JHgD+geHcdNckcccCGGccclbcB:rP/GOk1emcCGhDXjkLKl8rvhV5HcdNcq

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0dd446f3a93e08276c9d62ca0c65c19c

Files

0dd446f3a93e08276c9d62ca0c65c19c
.exe windows:4 windows x86 arch:x86

8d2a2913ef08049d1063f2e4ab324b65

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

comdlg32

ReplaceTextW

kernel32

LeaveCriticalSection
GetStringTypeA
SetEnvironmentVariableA
IsValidLocale
GetEnvironmentVariableA
FreeEnvironmentStringsA
DeleteCriticalSection
IsValidCodePage
GetStartupInfoA
GetCurrentProcess
GetSystemTimeAsFileTime
SetLastError
FindNextChangeNotification
HeapSize
CreateFileA
WriteConsoleA
TlsAlloc
HeapReAlloc
GetStringTypeW
GetProcAddress
FlushFileBuffers
ReadFile
GetStdHandle
SetFilePointer
GetCurrentProcessId
TerminateProcess
MultiByteToWideChar
GetEnvironmentStrings
GetFullPathNameW
WriteConsoleW
GetEnvironmentStringsW
Sleep
GetVersionExA
GetDateFormatA
SetUnhandledExceptionFilter
VirtualAlloc
GetCurrentThread
InterlockedDecrement
HeapDestroy
SetConsoleCtrlHandler
RtlUnwind
LCMapStringA
WriteProfileStringW
GetFileType
EnterCriticalSection
GetCurrentThreadId
LCMapStringW
OpenMutexA
HeapCreate
GetTimeFormatA
WriteFile
ExitProcess
GetModuleFileNameA
HeapFree
LoadLibraryA
GetACP
GetProcessHeap
GetCPInfo
SetThreadAffinityMask
GetConsoleCP
SetStdHandle
WideCharToMultiByte
UnhandledExceptionFilter
GetCalendarInfoA
VirtualQuery
GetLastError
GetOEMCP
InterlockedIncrement
CloseHandle
CreateMutexA
HeapAlloc
IsDebuggerPresent
GetLocaleInfoA
WritePrivateProfileSectionW
SetHandleCount
VirtualFree
GetModuleHandleA
FreeLibrary
CompareStringW
GetTimeZoneInformation
FreeEnvironmentStringsW
TlsSetValue
GetConsoleOutputCP
GetUserDefaultLCID
GetCommandLineA
GetLocaleInfoW
InterlockedExchange
CompareStringA
EnumSystemLocalesA
TlsGetValue
InitializeCriticalSection
TlsFree
GetTickCount
QueryPerformanceCounter
GetConsoleMode

comctl32

CreateStatusWindow
ImageList_Read
ImageList_Duplicate
ImageList_AddMasked
CreateToolbar
ImageList_Draw
InitCommonControlsEx
ImageList_DragShowNolock
ImageList_ReplaceIcon

gdi32

GetBkColor
InvertRgn
DeleteMetaFile
ExcludeClipRect
GetDIBits
SelectPalette
ChoosePixelFormat
ResizePalette
CreateDIBSection
SelectClipRgn
GetPath
CreateDIBPatternBrush
EnumFontFamiliesExA
SetColorAdjustment
CreateEllipticRgnIndirect
RealizePalette
GetICMProfileA
GetRasterizerCaps
ModifyWorldTransform
SetMapperFlags
SetMapMode

user32

RegisterClassExA
ChangeMenuW
IsDialogMessage
InsertMenuItemW
IsRectEmpty
HideCaret
DdeConnectList
GetMenuBarInfo
GetSysColor
LockWindowUpdate
UnpackDDElParam
CreateAcceleratorTableA
ChildWindowFromPoint
DestroyWindow
GetMenuItemRect
MapWindowPoints
LoadCursorFromFileW
GetMenuContextHelpId
DefDlgProcW
CharNextW
SetParent
SendMessageTimeoutW
DefMDIChildProcA
SetMenuContextHelpId
GetGUIThreadInfo
GetDlgItem
ToAsciiEx
RegisterDeviceNotificationA
SetClassLongW
LoadStringW
CreateWindowExW
DragObject
CloseClipboard
DdeSetQualityOfService
DefWindowProcA
ReplyMessage
SetCaretBlinkTime
MoveWindow
BeginDeferWindowPos
EnumDisplayDevicesW
DefWindowProcW
SendDlgItemMessageW
CreateIconFromResource
RegisterClassA
DrawCaption
SetSysColors
ShowWindow
DrawFrameControl
MessageBoxA
EndPaint
GetClassInfoExA
GetClipboardSequenceNumber
TileChildWindows
TranslateMDISysAccel
GetWindowModuleFileNameA
GetThreadDesktop
CloseWindow
GetDesktopWindow
GetSubMenu
PostMessageA
OemToCharBuffW

Sections

.text
Size: 192KB - Virtual size: 188KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 260KB - Virtual size: 257KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 112KB - Virtual size: 133KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 84KB - Virtual size: 80KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8d2a2913ef08049d1063f2e4ab324b65

Headers

File Characteristics

Imports

comdlg32

kernel32

comctl32

gdi32

user32

Sections

.text Size: 192KB - Virtual size: 188KB

.rdata Size: 260KB - Virtual size: 257KB

.data Size: 112KB - Virtual size: 133KB

.rsrc Size: 84KB - Virtual size: 80KB

.text
Size: 192KB - Virtual size: 188KB

.rdata
Size: 260KB - Virtual size: 257KB

.data
Size: 112KB - Virtual size: 133KB

.rsrc
Size: 84KB - Virtual size: 80KB