1210d671936bcdb9bae4d66a7f72573d

Sharing

Copy URL Twitter E-mail

General

Target

1210d671936bcdb9bae4d66a7f72573d
Size

548KB
MD5

1210d671936bcdb9bae4d66a7f72573d
SHA1

a0904f849d20bf29717888bdd7647a7d28b3f451
SHA256

ebbef3b72e6a68e4c090ff7fada1eccdc317b6a4ff1e7d252292484be9f35213
SHA512

9f5f1810fe54ad2afc0655923b78bc2fe87048f0b9fe197769e6c9c6b89bc7bf4390141d24fe9f31b0748a63bff6c631ee6997556d340247199b84aaa59f1fe3
SSDEEP

12288:Xcpq16JbyNerqjwwx6MQMZ+hWghT8g2wa:qJbyNerWphiWkAgva

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1210d671936bcdb9bae4d66a7f72573d

Files

1210d671936bcdb9bae4d66a7f72573d
.exe windows:4 windows x86 arch:x86

9fc2bcce125d8cf2d94f8aeef37f097f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

DlgDirListA
DestroyWindow
BeginDeferWindowPos
GetSysColor
CreateCaret
GetClipboardSequenceNumber
InternalGetWindowText
EnumPropsExW
GetMenuItemCount
EnableScrollBar
SetScrollPos
SetMenuContextHelpId
DefFrameProcW
RegisterClassA
GetClipboardViewer
GetScrollBarInfo
SystemParametersInfoW
DdeAbandonTransaction
ValidateRect
GetClipCursor
GetClassLongA
EnumDisplayDevicesA
CloseWindowStation
UnregisterHotKey
GetKeyboardLayoutNameW
BroadcastSystemMessageA
IsWindow
SetRect
SetClipboardViewer
DdeFreeDataHandle
GetClipboardOwner
GetKeyNameTextW
GetClipboardFormatNameW
UnregisterDeviceNotification
SetFocus
SetLastErrorEx
SetMenuItemBitmaps
VkKeyScanA
DlgDirListComboBoxA
ToUnicode
GetKeyNameTextA
InsertMenuItemW
GetKeyboardState
InsertMenuW
SetUserObjectSecurity
ShowWindow
CreateWindowExA
UnregisterClassW
DdeQueryConvInfo
OpenDesktopA
GetScrollRange
CopyIcon
CharLowerBuffW
GetClassInfoExA
SetMenuDefaultItem
DdeConnectList
DefWindowProcW
SystemParametersInfoA
GetProcessDefaultLayout
CopyAcceleratorTableA
LookupIconIdFromDirectoryEx
GetClassNameA
IsCharUpperW
CharNextExA
CheckRadioButton
SendDlgItemMessageW
IsDlgButtonChecked
DdePostAdvise
GetIconInfo
DdeAccessData
TranslateMessage
DragDetect
RegisterClassExA
ArrangeIconicWindows
CreateDialogParamW
EditWndProc
GetPropA
CallWindowProcA
CreateDialogIndirectParamA
CallMsgFilterA
SwitchDesktop
MessageBoxExA
LoadMenuW
DlgDirSelectComboBoxExW
DdeReconnect
MessageBoxA
CallNextHookEx
GetWindowModuleFileNameA
SendNotifyMessageW
EndPaint
CharToOemBuffW
SendDlgItemMessageA
FindWindowExA
CharNextW
LoadBitmapW
DlgDirSelectExA

kernel32

GetThreadContext
MultiByteToWideChar
IsBadWritePtr
CloseHandle
CompareStringA
ExitProcess
RtlUnwind
HeapDestroy
GetModuleFileNameW
GetEnvironmentVariableW
GetCurrencyFormatA
GetProfileStringA
GetEnvironmentVariableA
IsValidCodePage
CreateDirectoryExW
lstrcpyn
HeapSize
GetEnvironmentStringsW
GetStringTypeW
ReadConsoleOutputA
TlsGetValue
GetSystemInfo
GetVersionExW
GetEnvironmentStrings
WriteFile
GetDateFormatA
GetCurrentThreadId
FreeEnvironmentStringsW
LocalHandle
SetHandleCount
MapViewOfFile
GetUserDefaultLCID
VirtualFree
LoadLibraryA
EnumSystemLocalesA
GetACP
IsValidLocale
GetVersionExA
TerminateProcess
lstrlenA
InterlockedExchange
FreeEnvironmentStringsA
UnhandledExceptionFilter
GetLocaleInfoW
LoadLibraryW
WriteConsoleOutputA
SetStdHandle
VirtualAlloc
SetCurrentDirectoryA
GetLocaleInfoA
Sleep
GetCurrentProcessId
GetModuleFileNameA
GetTickCount
FindFirstFileW
lstrcmpW
GetSystemTimeAsFileTime
GetOEMCP
EnterCriticalSection
WriteConsoleOutputCharacterW
HeapReAlloc
DeleteCriticalSection
SetConsoleMode
GetProcAddress
GetCommandLineW
TlsFree
GetCPInfo
VirtualProtect
SetLastError
SetEnvironmentVariableA
LCMapStringA
SetFilePointer
GetFileType
CreateMutexA
GetCommandLineA
LocalUnlock
GetCurrentThread
OpenMutexW
LCMapStringW
CreateRemoteThread
WriteFileEx
TlsSetValue
CompareStringW
ReadFile
GetStringTypeA
QueryPerformanceCounter
GetStdHandle
VirtualQuery
InitializeCriticalSection
GetTimeZoneInformation
HeapAlloc
FlushFileBuffers
HeapCreate
LockFile
GetFullPathNameA
GetTimeFormatA
GetLastError
GetConsoleOutputCP
GetExitCodeThread
WideCharToMultiByte
GetStartupInfoW
GlobalFindAtomW
LeaveCriticalSection
GetCurrentProcess
TlsAlloc
lstrcpynW
OpenMutexA
GetFullPathNameW
GetModuleHandleA
WaitForDebugEvent
lstrcpyW
HeapFree
GetStartupInfoA

comctl32

ImageList_GetImageInfo
ImageList_Destroy
ImageList_DragLeave
CreateToolbarEx
ImageList_Draw
CreatePropertySheetPage
InitCommonControlsEx
ImageList_Add
DrawInsert
DrawStatusText
ImageList_Copy
ImageList_AddMasked
ImageList_AddIcon
ImageList_GetImageRect
ImageList_SetOverlayImage
ImageList_GetBkColor
ImageList_Duplicate
ImageList_LoadImageW
ImageList_Create
ImageList_GetFlags
ImageList_GetDragImage

Sections

.text
Size: 156KB - Virtual size: 154KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 264KB - Virtual size: 261KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 108KB - Virtual size: 115KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9fc2bcce125d8cf2d94f8aeef37f097f

Headers

File Characteristics

Imports

user32

kernel32

comctl32

Sections

.text Size: 156KB - Virtual size: 154KB

.rdata Size: 264KB - Virtual size: 261KB

.data Size: 108KB - Virtual size: 115KB

.rsrc Size: 16KB - Virtual size: 12KB

.text
Size: 156KB - Virtual size: 154KB

.rdata
Size: 264KB - Virtual size: 261KB

.data
Size: 108KB - Virtual size: 115KB

.rsrc
Size: 16KB - Virtual size: 12KB