0f24b3ba52873b578f7e5ef0e1995a93

Sharing

Copy URL

Twitter E-mail

General

Target

0f24b3ba52873b578f7e5ef0e1995a93
Size

56KB
MD5

0f24b3ba52873b578f7e5ef0e1995a93
SHA1

1c24e7f3f1d68dd2bff6a2175b6b307956eba174
SHA256

2cbf662624a1fb42e30e205eec056e5e16ff5dd849edda920b4bf736a7429f73
SHA512

ea36e47ebf15d7f442b3460d0e181c45074452d188c745d1d063aa777880c1339917b2729f0488afda7dfbc19b00810778e75933409d6ca42145132d1ab54390
SSDEEP

768:dzU/+5AAFlFXE5OvifISi4fsaiK/0DHusiJolg0exI8ozQBsYrtk26J+91YJmcUr:dkA1cZfIpv7OB2OoukArcRxpQed

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0f24b3ba52873b578f7e5ef0e1995a93

Files

0f24b3ba52873b578f7e5ef0e1995a93
.exe windows:5 windows x86 arch:x86

a73f3c9951f0b8640eca2a786f027f22

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

TabbedTextOutW
InvertRect
SetDlgItemTextA
MapWindowPoints
GetCursorPos
MessageBoxExW
RemovePropW
LoadImageA
CheckRadioButton
InflateRect
SetRect
CopyRect
TrackPopupMenuEx
GetSystemMenu
GetWindowTextLengthW
wsprintfA
SetActiveWindow
DrawStateA
GetDlgCtrlID
CharToOemBuffA
GetClassNameW
IsDlgButtonChecked
WaitForInputIdle
GetTopWindow
SendDlgItemMessageW
SetTimer
GetClassLongW
GetMonitorInfoW
DestroyCursor
SetCaretPos
ShowOwnedPopups
DefDlgProcA
CharNextW
SetWindowLongA
GetMenu
SendDlgItemMessageA
MapVirtualKeyW
TrackPopupMenu
SetDlgItemInt
DeferWindowPos
GrayStringW
MessageBoxW
InvalidateRgn
ReleaseDC
ScrollWindowEx
IsCharUpperA
InsertMenuW
HideCaret
EqualRect
HiliteMenuItem
TranslateAcceleratorW
DrawEdge
ShowWindowAsync
CreateIconFromResource
AdjustWindowRectEx
GetSysColor
OemToCharBuffA
GetMenuCheckMarkDimensions
EnumWindows
IsMenu
SetFocus
wsprintfW
ShowCaret
GetAltTabInfoW
DestroyIcon
ReplyMessage
GetMenuState
CascadeWindows
TileWindows
WaitMessage
DefFrameProcW
EnableWindow
GetClipCursor
IsDialogMessageW
ChildWindowFromPointEx
SystemParametersInfoA
AppendMenuA
GetParent
IsZoomed
DefDlgProcW
ActivateKeyboardLayout
CreateAcceleratorTableW
GetScrollRange
GetAsyncKeyState
InternalGetWindowText
LoadMenuA
GetDCEx
GetDlgItem
GetNextDlgTabItem
GetWindowRect
IntersectRect
GetMessageA
MapVirtualKeyExW
RegisterWindowMessageW
SendMessageTimeoutA
CreateIconIndirect
AllowSetForegroundWindow
FindWindowW
DestroyWindow
LoadCursorA
SetParent
SetWindowLongW
SetCursor
ValidateRect
ScreenToClient
IsWindowUnicode
LoadStringA
UnionRect
SetMenuItemInfoW
TranslateMessage
DialogBoxIndirectParamW
IsCharAlphaW
GetScrollInfo
IsIconic
CharLowerBuffW
RegisterWindowMessageA
SetWindowPlacement
GetDlgItemTextW
GetShellWindow
GetWindowLongA
SetClassLongW

gdi32

CreatePolygonRgn
CreateRectRgn
GetDIBColorTable
SetTextAlign
GetTextExtentExPointW
ResizePalette
GetSystemPaletteEntries
SetViewportOrgEx
GetSystemPaletteUse
GetDIBits
GetObjectW
LPtoDP
EndPage
GetTextCharsetInfo
GetTextExtentPointW
TextOutA
GetNearestPaletteIndex
CreateFontW
PathToRegion
GetBkMode
CreateEllipticRgnIndirect
CreateICW
GetClipBox
TranslateCharsetInfo
PtInRegion
OffsetViewportOrgEx
CreateBitmap
CreateDiscardableBitmap
DPtoLP
CreateDIBitmap
PolyBezier
GetRgnBox
RectInRegion
PtVisible
WidenPath
RectVisible
Escape
CreatePalette
CombineRgn
SetDIBColorTable
SetBkMode
SetROP2
OffsetRgn
CreateBrushIndirect
GetObjectA
SelectObject
CreatePatternBrush
SetDIBitsToDevice
RealizePalette
SetBitmapBits
SetWindowOrgEx

kernel32

GlobalMemoryStatus
GetStdHandle
CreateDirectoryA
GetModuleFileNameA
GetCommState
GetCommConfig
CompareFileTime
lstrcpyW
GetTimeZoneInformation
VirtualProtect
FlushViewOfFile
HeapValidate
GetModuleHandleA
GetCommTimeouts
LoadLibraryW
CreateSemaphoreA
FormatMessageW
LCMapStringW
CreateFileMappingA
TerminateThread
GetTempPathA
CreateDirectoryW
GetLongPathNameW
FindClose
GetLocaleInfoW
CompareStringA
ExitThread
LoadLibraryExW
GetLocaleInfoA
GetFileAttributesW
SystemTimeToFileTime
SetEndOfFile
QueryPerformanceCounter
GetSystemDefaultLangID
SetHandleInformation
GetAtomNameA
AddAtomA
FindNextFileW
TlsGetValue
GetComputerNameW
lstrcpynA
GetOverlappedResult
GlobalFree
GetHandleInformation
GetModuleFileNameW
LocalFree
CreateNamedPipeA
lstrcmpiW
SetThreadAffinityMask
DeleteCriticalSection
GetComputerNameExW
CreateNamedPipeW
SetThreadExecutionState
GetModuleHandleW
ReadFile

msvcrt

_controlfp
__set_app_type
__p__fmode
tolower
__p__commode
strrchr
_amsg_exit
strncpy
_initterm
wcstoul
qsort
iswxdigit
isalpha
mbtowc
_acmdln
wcstok
exit
rand
printf
strpbrk
gets
wcscoll
wcschr
atoi
_ismbblead
wcstol
_XcptFilter
strcoll
_exit
wcscspn
_cexit
setvbuf
__setusermatherr
iswspace
fwrite
bsearch
towupper
clearerr
mktime
putchar
strtok
isxdigit
setlocale
__getmainargs
ungetc
realloc
floor
strerror

Exports

Exports

?BitCounterArrayIdeDunAs@@YGKGE@Z
?ShowWidthExA@@YGPANFE]A
?InsertWindowInfoExA@@YGEJPAIPAFI]A

Sections

.text
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 3KB - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 29KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a73f3c9951f0b8640eca2a786f027f22

Headers

File Characteristics

Imports

user32

gdi32

kernel32

msvcrt

Exports

Exports

Sections

.text Size: 20KB - Virtual size: 20KB

.data Size: 3KB - Virtual size: 52KB

.rsrc Size: 29KB - Virtual size: 29KB

.reloc Size: 1KB - Virtual size: 1KB

.text
Size: 20KB - Virtual size: 20KB

.data
Size: 3KB - Virtual size: 52KB

.rsrc
Size: 29KB - Virtual size: 29KB

.reloc
Size: 1KB - Virtual size: 1KB