127607f4088a449801a1209805f88268

Sharing

Copy URL

Twitter E-mail

General

Target

127607f4088a449801a1209805f88268
Size

59KB
MD5

127607f4088a449801a1209805f88268
SHA1

58577cfc745a4b2178b106ff02df4b4d317f8679
SHA256

811fe3a49096fa9e9080ddd4263d6aa9cc04dfbbecf10dcf3b67c8b9189af5df
SHA512

0088140cb1404bc3eb00aba08338ebee46a41abb31d6e5ba196015c51930bad2a3387e8de9af3d1c39fe4ed6e39b32f12b13a26014ffd923faa1e3dc3d68df45
SSDEEP

1536:YAWjLS/RmAfW24m07SXdAswQVtWTdhTj/zSyMDmWs4VJVAfmJOm:YAbmANh07SNgQiTdh32yym/ydl

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
127607f4088a449801a1209805f88268

Files

127607f4088a449801a1209805f88268
.exe windows:4 windows x86 arch:x86

66b81b17ac80315c90cf81c08a8aa77a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegOpenKeyW
RegCreateKeyExA
RegEnumKeyExA
RegEnumValueW
RegEnumKeyA
RegReplaceKeyW
RegEnumKeyExW
RegQueryValueW
RegDeleteValueA
RegQueryValueA
RegDeleteKeyA
RegGetKeySecurity
RegQueryInfoKeyA
RegQueryValueExA
RegQueryValueExW
RegLoadKeyA
RegFlushKey
RegOpenKeyExA
RegCreateKeyW

gdi32

GetPixel
AddFontResourceTracking
CreateSolidBrush
ExtTextOutA
AddFontResourceA
GetPixel
DeleteObject
SetTextColor
CloseFigure
AbortPath
CopyMetaFileA
GetBrushOrgEx
ClearBitmapAttributes
BitBlt
ExcludeClipRect
AddFontResourceW
CloseMetaFile
GetDCOrgEx
AddFontResourceExA
AddFontResourceExW
GetClipBox
AddFontMemResourceEx
AddFontResourceTracking
CopyMetaFileA
AddFontResourceExW
ClearBitmapAttributes
AbortPath
CloseFigure
RestoreDC
SetTextColor
BitBlt
GetClipBox
AddFontResourceA
ClearBrushAttributes
ExtTextOutA
GetDCOrgEx
BeginPath
GetCurrentPositionEx
CreateSolidBrush
AddFontResourceExA
AddFontMemResourceEx
GetPixel
AddFontResourceExA
BitBlt
ExcludeClipRect
AddFontResourceW
ExtTextOutA
CopyMetaFileA
SetTextColor
GetBrushOrgEx
CloseFigure
CloseMetaFile
DeleteDC
ClearBrushAttributes
AddFontResourceExW
ClearBitmapAttributes
GetCurrentPositionEx
AddFontResourceTracking
RestoreDC
DeleteObject
GetDCOrgEx
AddFontResourceA
BeginPath
GetClipBox

comctl32

ImageList_GetIcon
ImageList_LoadImageW
ImageList_GetIconSize
ImageList_AddIcon
ImageList_DragShowNolock
ImageList_Destroy
ImageList_GetImageInfo
ImageList_DragEnter
ImageList_Remove
InitCommonControls
ImageList_Merge
ImageList_DragMove
ImageList_BeginDrag
ImageList_GetImageCount
ImageList_DrawIndirect
ImageList_EndDrag
ImageList_GetDragImage
ImageList_LoadImageA
ImageList_Create
ImageList_Replace
ImageList_Read
ImageList_LoadImage
ImageList_GetImageCount
ImageList_DragShowNolock
ImageList_Destroy
ImageList_ReplaceIcon
ImageList_Replace
ImageList_LoadImageW
ImageList_AddMasked
ImageList_DragEnter
ImageList_DrawEx
ImageList_LoadImage
ImageList_DragMove
ImageList_GetIconSize
ImageList_BeginDrag
ImageList_GetIcon
ImageList_AddIcon
InitCommonControls

user32

AppendMenuW
AppendMenuA
CloseWindow
DrawIcon
AlignRects
BlockInput
IsMenu
GetDC
LoadCursorA
IsWindow
DrawTextA
CopyRect
CalcMenuBar
GetMenu
DialogBoxParamA
DialogBoxParamW
InsertMenuA
CopyImage
GetCursor
LoadMenuA
AppendMenuA
CalcMenuBar
LoadMenuA
GetCursor
LoadCursorA
DrawIconEx
CreateIcon
DialogBoxParamW
AppendMenuW
CopyIcon
GetMenu
DrawTextA
InsertMenuA
GetFocus
GetDC

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 50KB - Virtual size: 135KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

66b81b17ac80315c90cf81c08a8aa77a

Headers

File Characteristics

Imports

advapi32

gdi32

comctl32

user32

Sections

.text Size: 4KB - Virtual size: 3KB

.rdata Size: 4KB - Virtual size: 4KB

.data Size: 50KB - Virtual size: 135KB

.text
Size: 4KB - Virtual size: 3KB

.rdata
Size: 4KB - Virtual size: 4KB

.data
Size: 50KB - Virtual size: 135KB