0f629c22a926eb1de433d6797a8c4fd2

Sharing

Copy URL Twitter E-mail

General

Target

0f629c22a926eb1de433d6797a8c4fd2
Size

106KB
MD5

0f629c22a926eb1de433d6797a8c4fd2
SHA1

5ba0eae24ab570543ac5680ca769a4c1a04b24e7
SHA256

862604f778acd3bb594b1e10d23319d25755ecbe042f24dbedfad2d448057b64
SHA512

e826b724418a95fc43ed91e77bde9b3c04ba2e5fe71eafa79d5bd43621eff8b862014e5fbe315d27364340a0c92c2df3baa849692d8e8ca3ac7d287f53d535bc
SSDEEP

3072:1jqF89PdCVs449yesCfME06dgLPC9v4gDTfd3cyTYBqHzrjpJcBuHrs:1jqFMHbyk

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0f629c22a926eb1de433d6797a8c4fd2

Files

0f629c22a926eb1de433d6797a8c4fd2
.exe windows:4 windows x86 arch:x86

1170bee5c82b6ab61612e1fca603324e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrlenA
GetModuleFileNameA
GetFileAttributesA
GetCurrentThread
GetCPInfo
GetStartupInfoA
lstrcatA
GetOEMCP
SetThreadLocale
GetCommandLineA
GetEnvironmentStrings
EnumCalendarInfoA
WriteFile
FindClose
GetLocaleInfoA
CompareStringA
HeapFree
ExitThread
GlobalFindAtomA
MoveFileExA
GlobalDeleteAtom
SizeofResource
GetThreadLocale
WideCharToMultiByte
lstrcpyA
GetProcAddress
ExitProcess
GetStringTypeA
SetLastError
lstrcpynA
GetTickCount
GetDateFormatA
SetHandleCount
lstrcmpA
VirtualAllocEx
GetFileType
GetCurrentProcess
CreateFileA
GetModuleHandleA
InitializeCriticalSection
GetSystemDefaultLangID
GetCurrentThreadId
CreateThread
GetVersion
GetFileSize
SetFilePointer
HeapDestroy
LockResource
GetDiskFreeSpaceA
LoadResource
GetCurrentProcessId
LoadLibraryA
VirtualAlloc
GetProcessHeap
LoadLibraryExA
FindResourceA
FindFirstFileA
WaitForSingleObject
VirtualFree
CloseHandle
GetLocalTime
RaiseException
GetVersionExA
EnterCriticalSection
FormatMessageA
GetStdHandle

msvcrt

calloc
log10
memcpy
malloc
memmove

gdi32

GetPaletteEntries
GetRgnBox

user32

DispatchMessageW
GetMenuItemID
GetMenuItemCount
GetSysColorBrush
CallWindowProcA
GetForegroundWindow
DefWindowProcA
GetScrollPos
GetKeyNameTextA
GetMenuState
DrawIcon
DrawMenuBar
CreateIcon
DrawIconEx
CreateWindowExA
DeferWindowPos
SetWindowPos
EnableScrollBar
CharNextA
DrawFrameControl
SystemParametersInfoA
EnumWindows
GetSubMenu
ShowWindow
MessageBoxA
GetCursor
GetMenuItemInfoA
CreateMenu
GetCursorPos
FillRect
DefMDIChildProcA
GetSysColor
GetScrollInfo
DefFrameProcA
GetDC
ClientToScreen
GetClassLongA
IsMenu
IsWindowVisible
SetCursor
GetFocus
BeginDeferWindowPos
EnableMenuItem
GetKeyState
TrackPopupMenu
HideCaret
GetClassInfoA
GetScrollRange
IsChild
RegisterClassA
GetClientRect
EnableWindow
EndDeferWindowPos
IsDialogMessageA
DrawEdge
GetDlgItem
SetTimer
DispatchMessageA
DrawTextA
GetMenuStringA
ShowScrollBar

Sections

CODE
Size: 53KB - Virtual size: 53KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 48KB - Virtual size: 47KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1170bee5c82b6ab61612e1fca603324e

Headers

File Characteristics

Imports

kernel32

msvcrt

gdi32

user32

Sections

CODE Size: 53KB - Virtual size: 53KB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 48KB - Virtual size: 47KB

CODE
Size: 53KB - Virtual size: 53KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 48KB - Virtual size: 47KB