0f7c3c321acb75caa8c20dffe33a2c24

Sharing

Copy URL Twitter E-mail

General

Target

0f7c3c321acb75caa8c20dffe33a2c24
Size

392KB
MD5

0f7c3c321acb75caa8c20dffe33a2c24
SHA1

810b0a06d489f6bfcce0da626b398626d64924fa
SHA256

02840056b7cc5446317e95ea248fac369f93f7b754592218662974868616ccea
SHA512

5ca60936579cced4fb3dd86e77699b785cacce6abc4dfc83e58471ed2f498e687b1556787e90b6677dd38b9117b06288507c48a9b4f89378695439337a2b4456
SSDEEP

12288:Nwa2b2CKJUAx03wgL52VRocrifoJlSHZDTA:Nr2bEUm03wgL5W/riA+T

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0f7c3c321acb75caa8c20dffe33a2c24

Files

0f7c3c321acb75caa8c20dffe33a2c24
.exe windows:4 windows x86 arch:x86

1bac398df12fb79696c37fa864438cfd

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

SetClassWord
InvertRect
GetClipboardData
RegisterClassA
GetMenuStringW
DlgDirListComboBoxA
UnionRect
UpdateWindow
CreateMDIWindowW
RegisterClassExA
SetMenuItemInfoW
InsertMenuA
RedrawWindow

comdlg32

FindTextW

advapi32

CryptGetUserKey
CryptGenKey
RegQueryInfoKeyA
LogonUserA
RegReplaceKeyW
CryptSetProvParam
RegSetValueExA
LogonUserW
InitializeSecurityDescriptor
CryptSetKeyParam
RegDeleteKeyA
RegSetValueA
RegEnumKeyW
RegOpenKeyExW
CryptGetHashParam
CryptExportKey
GetUserNameW
CryptReleaseContext
DuplicateTokenEx
CryptGetProvParam
RegDeleteValueA
ReportEventW
RegCreateKeyExA
RegCreateKeyExW

shell32

ExtractIconEx
SHEmptyRecycleBinA
FindExecutableA
SHFreeNameMappings

gdi32

GetColorSpace
CreateDiscardableBitmap
GetAspectRatioFilterEx
LineTo
CreateDIBPatternBrushPt
EnumObjects
ExcludeClipRect
SetDeviceGammaRamp
PlgBlt
ExtCreatePen
FloodFill
CreateEllipticRgnIndirect
PatBlt
SelectClipRgn
GetCharABCWidthsFloatA

comctl32

InitCommonControlsEx

kernel32

GetModuleHandleW
VirtualAlloc
FreeEnvironmentStringsW
IsValidCodePage
InterlockedExchange
SetLastError
SetEnvironmentVariableA
HeapDestroy
CompareStringA
GetConsoleCP
EnumSystemLocalesA
TlsSetValue
InterlockedDecrement
RtlUnwind
GetStdHandle
LoadLibraryA
GetConsoleOutputCP
GetStartupInfoA
GetCPInfo
GetLocaleInfoA
LeaveCriticalSection
TlsAlloc
GetUserDefaultLCID
CreateMutexA
GetSystemTimeAsFileTime
InitializeCriticalSectionAndSpinCount
UnhandledExceptionFilter
HeapFree
IsValidLocale
LCMapStringA
GetFullPathNameW
CreateFileA
GetStringTypeW
GetTimeZoneInformation
Sleep
TerminateProcess
CompareStringW
GetTickCount
FlushFileBuffers
GetCurrentProcessId
GetStringTypeExA
SetStdHandle
HeapCreate
FreeLibrary
GetCurrentThreadId
ReadConsoleInputA
TlsFree
VirtualQuery
MultiByteToWideChar
ReadFile
InterlockedIncrement
SetHandleCount
GetFileType
EnumResourceLanguagesA
GetLastError
SetUnhandledExceptionFilter
AllocConsole
GetACP
WriteConsoleA
WideCharToMultiByte
WriteFile
OpenMutexA
HeapAlloc
SetFilePointer
SetConsoleCtrlHandler
IsDebuggerPresent
LCMapStringW
GetStringTypeA
GetCurrentThread
QueryPerformanceCounter
GetLocaleInfoW
MoveFileA
GetEnvironmentStringsW
GetEnvironmentStringsA
TransmitCommChar
HeapSize
GetProcAddress
CloseHandle
GetOEMCP
GetCommandLineW
EnumResourceLanguagesW
EnterCriticalSection
GetCurrentProcess
GetEnvironmentStrings
VirtualFree
ExitProcess
WriteConsoleW
TlsGetValue
FreeEnvironmentStringsA
GetModuleFileNameA
DeleteCriticalSection
GetDateFormatA
HeapReAlloc
GetTimeFormatA
GetConsoleMode
GetCommandLineA
GetModuleHandleA

Sections

.text
Size: 241KB - Virtual size: 240KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 40KB - Virtual size: 61KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 94KB - Virtual size: 93KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1bac398df12fb79696c37fa864438cfd

Headers

File Characteristics

Imports

user32

comdlg32

advapi32

shell32

gdi32

comctl32

kernel32

Sections

.text Size: 241KB - Virtual size: 240KB

.rdata Size: 40KB - Virtual size: 61KB

.data Size: 94KB - Virtual size: 93KB

.rsrc Size: 16KB - Virtual size: 15KB

.text
Size: 241KB - Virtual size: 240KB

.rdata
Size: 40KB - Virtual size: 61KB

.data
Size: 94KB - Virtual size: 93KB

.rsrc
Size: 16KB - Virtual size: 15KB