1626bb7d39f60852b49e3651a0b21812

Sharing

Copy URL

Twitter E-mail

General

Target

1626bb7d39f60852b49e3651a0b21812
Size

105KB
MD5

1626bb7d39f60852b49e3651a0b21812
SHA1

d194972abf878a5c4115f6ae0b0b9943110d99b4
SHA256

700be5a13b8f8f003db3b983d5d8b1063af9359c751b986083485c03deed910a
SHA512

8bcade769392c7c221ae7ec4c78d16da8db8b1f843e9905a7cc50e8ff35e7cc996854c65ef10317b56151f17489042401151d6d8e53d559d3cf47019b192b1f5
SSDEEP

3072:jZfYznexZKRQNLXt/cA3rlWTfheRsPw2aSo:jtyexZDBJcA3q7o

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1626bb7d39f60852b49e3651a0b21812

Files

1626bb7d39f60852b49e3651a0b21812
.exe windows:4 windows x86 arch:x86

33b0262c0e31183c3fe4409c1c8caf39

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

WritePrivateProfileSectionA
WritePrivateProfileStringA
GetLogicalDrives
GetDriveTypeA
lstrlenA
OpenFile
_lread
_lclose
WinExec
ExitThread
GetExitCodeThread
GetPrivateProfileIntA
GetPrivateProfileStringA
Sleep
MultiByteToWideChar
WaitForSingleObject
CreateThread
CloseHandle
SetErrorMode
ExitProcess
SearchPathA
GetUserDefaultLCID
GetLastError
GetLocaleInfoA
LocalFree
RtlZeroMemory
RtlMoveMemory
GetProcAddress
GetModuleHandleA
InterlockedDecrement
GetCommandLineA
InterlockedIncrement
GetTickCount
LocalAlloc

user32

GetWindowThreadProcessId
IsIconic
FindWindowA
MessageBoxA
SetFocus
GetLastActivePopup
GetForegroundWindow
SetTimer
EnumChildWindows
ReleaseDC
GetDC
EnableMenuItem
SetWindowPos
DispatchMessageA
DefWindowProcA
PostMessageA
DialogBoxParamA
DestroyWindow
SetWindowTextA
GetWindowLongA
KillTimer
EndDeferWindowPos
DeferWindowPos
BeginDeferWindowPos
GetWindowDC
LoadCursorA
wvsprintfA
CheckMenuItem
DeleteMenu
PostQuitMessage
DefDlgProcA
GetDesktopWindow
LoadIconA
BringWindowToTop
CharUpperBuffA
SetWindowPlacement
GetWindowPlacement
WindowFromPoint
SendDlgItemMessageA
EndDialog
SetDlgItemTextA
TranslateAcceleratorA
GetDlgItemTextA
SetCursor
ScreenToClient
PtInRect
ChildWindowFromPoint
RegisterWindowMessageA
SetCapture
ClientToScreen
GetParent
ReleaseCapture
GetCursorPos
DrawIcon
EndPaint
GetWindowTextA
BeginPaint
PeekMessageA
DrawTextA
SetDlgItemInt
GetDlgItemInt
RedrawWindow
RegisterClassA
CreateDialogParamA
LoadStringA
LoadAcceleratorsA
ShowWindow
UpdateWindow
SetForegroundWindow
GetFocus
LoadBitmapA
EnableWindow
TranslateMessage
GetMessageA
IsDialogMessageA
GetSubMenu
GetMenu
InvalidateRect
GetWindowRect
GetSystemMetrics
wsprintfA
GetDlgCtrlID
CallWindowProcA
CopyRect
DrawFocusRect
RemovePropA
CreateWindowExA
GetDlgItem
SetPropA
SetWindowLongA
GetClientRect
MapWindowPoints
SendMessageA
GetPropA
SetRect
DrawEdge
GetSysColor
IsWindow
WinHelpA
IsWindowVisible

crtdll

_amsg_exit
_XcptFilter
exit
_except_handler2
_exit
_initterm
_acmdln_dll
_commode_dll
_fmode_dll
_aexit_rtn_dll
__GetMainArgs
rand
strchr
strcspn
strspn
strncpy
sscanf
srand

gdi32

SaveDC
IntersectClipRect
RestoreDC
SetTextAlign
GetTextMetricsA
ExtTextOutA
SetBkColor
SelectObject
DeleteObject
CreateBitmap
CreateCompatibleDC
DeleteDC
BitBlt
PatBlt
CreateSolidBrush
SetTextColor
CreateFontIndirectA
GetDeviceCaps
GetTextExtentPoint32A
GetTextExtentPointA
GetStockObject
GetObjectA

comctl32

ord8
CreateToolbarEx
ord6

shell32

DragAcceptFiles
DragQueryFileA
SHGetFileInfoA
DragFinish
ShellAboutA

winmm

mciSendCommandA

advapi32

RegCloseKey
RegSetValueExA
RegOpenKeyA
RegQueryValueExA
RegCreateKeyA

ole32

CoCreateInstance
OleInitialize
OleUninitialize

Sections

.text
Size: 52KB - Virtual size: 51KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.sdata
Size: 4KB - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 4KB - Virtual size: 20B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 9KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

33b0262c0e31183c3fe4409c1c8caf39

Headers

File Characteristics

Imports

kernel32

user32

crtdll

gdi32

comctl32

shell32

winmm

advapi32

ole32

Sections

.text Size: 52KB - Virtual size: 51KB

.sdata Size: 4KB - Virtual size: 4B

.data Size: 4KB - Virtual size: 3KB

.idata Size: 8KB - Virtual size: 4KB

.CRT Size: 4KB - Virtual size: 20B

.rsrc Size: 20KB - Virtual size: 20KB

.reloc Size: 9KB - Virtual size: 12KB

.text
Size: 52KB - Virtual size: 51KB

.sdata
Size: 4KB - Virtual size: 4B

.data
Size: 4KB - Virtual size: 3KB

.idata
Size: 8KB - Virtual size: 4KB

.CRT
Size: 4KB - Virtual size: 20B

.rsrc
Size: 20KB - Virtual size: 20KB

.reloc
Size: 9KB - Virtual size: 12KB