168003ca88998830c8a42943e20ea071

Sharing

Copy URL Twitter E-mail

General

Target

168003ca88998830c8a42943e20ea071
Size

604KB
MD5

168003ca88998830c8a42943e20ea071
SHA1

472445b670ba43d2a007d598ad5cfdd9288e1bda
SHA256

c4ba53a5825b696f094525cc6e0bf93b3f8b5315751740f05d618ad5c0b220d5
SHA512

e11817a2d7991641d46afcd7c369f719fbc38a40466ec8ddea38b562c36a66a3d4400d5f370e6f1af1ceae0cc49f30a7754547f06daa21da33b63e748a24500f
SSDEEP

12288:61n64VM9zrN8+RMmFPJqAofRL9YjNHTHo:kn6L9zrNrRTBJqzLOFTI

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
168003ca88998830c8a42943e20ea071

Files

168003ca88998830c8a42943e20ea071
.exe windows:4 windows x86 arch:x86

990f3e51fb7b64dfbd9b097fa28995a9

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

comdlg32

GetSaveFileNameA

comctl32

ImageList_AddIcon
ImageList_Replace
ImageList_Copy
ImageList_SetIconSize
CreateMappedBitmap
ImageList_Destroy
ImageList_DragShowNolock
CreatePropertySheetPageW
CreateToolbar
ImageList_Draw
DestroyPropertySheetPage
InitCommonControlsEx
ImageList_EndDrag
DrawStatusTextW
ImageList_SetDragCursorImage

user32

CharNextExA
SetMenu
ValidateRect
LoadBitmapW
SetPropW
IsCharUpperW
GetWindowTextLengthW
WINNLSEnableIME
ExitWindowsEx
ShowWindow
WinHelpW
DestroyWindow
GetWindowModuleFileNameW
RegisterClassA
TranslateAcceleratorW
EndPaint
MessageBoxW
EnumDisplayDevicesA
UnhookWindowsHookEx
GetMenuItemInfoA
TrackPopupMenu
wsprintfA
ToUnicode
GetProcessWindowStation
IsRectEmpty
CreateWindowExA
GetClassNameW
LoadMenuIndirectA
GetUserObjectInformationA
ReleaseDC
DefWindowProcW
DestroyMenu
SetClassLongA
AdjustWindowRectEx
ShowScrollBar
LookupIconIdFromDirectoryEx
EnumWindows
RegisterClassExA
OpenInputDesktop
WindowFromPoint
ShowOwnedPopups
CreateIconFromResourceEx
FillRect
GetKeyboardType
CreateWindowStationA

shell32

SHGetFileInfo
SHGetFileInfoW

kernel32

GetEnvironmentStringsW
WriteConsoleW
ExitProcess
GetOEMCP
EnumSystemLocalesA
LoadResource
CompareStringW
GetDateFormatA
VirtualFree
MoveFileExW
SetConsoleCtrlHandler
IsValidLocale
InterlockedDecrement
FreeEnvironmentStringsA
SetFileAttributesW
InterlockedExchange
GetTimeFormatA
TlsGetValue
InterlockedIncrement
LCMapStringW
IsDebuggerPresent
TerminateThread
GetModuleHandleW
CreateMutexA
GetCommandLineW
GetStartupInfoA
GetStringTypeA
TlsSetValue
SetFilePointer
GetProcAddress
GetFileAttributesW
VirtualAlloc
WriteConsoleA
HeapReAlloc
TlsFree
HeapFree
WriteFile
FreeLibraryAndExitThread
LCMapStringA
ReadFile
GetSystemTimeAsFileTime
GetCommandLineA
IsValidCodePage
GetUserDefaultLCID
GetTimeZoneInformation
GetModuleHandleA
GetCurrentProcess
FreeEnvironmentStringsW
GetConsoleOutputCP
OpenMutexA
GetCPInfo
GetCurrentThread
TlsAlloc
GetStringTypeW
SetStdHandle
TerminateProcess
SetHandleCount
GetConsoleMode
UnhandledExceptionFilter
GetCurrentProcessId
CompareStringA
GetLocaleInfoA
SetEnvironmentVariableA
GetEnvironmentStrings
LeaveCriticalSection
SetUnhandledExceptionFilter
GetTickCount
GetStdHandle
PulseEvent
HeapSize
LoadLibraryA
EnterCriticalSection
FindAtomA
InitializeCriticalSectionAndSpinCount
GetCurrentThreadId
HeapCreate
RtlUnwind
GetLocaleInfoW
Sleep
GetACP
DeleteCriticalSection
HeapDestroy
MultiByteToWideChar
WideCharToMultiByte
GetConsoleCP
CreateFileA
HeapAlloc
VirtualQuery
GetProcAddress
ReadConsoleInputW
GetLastError
GetFileType
GetModuleFileNameA
QueryPerformanceCounter
FreeLibrary
SetLastError
CloseHandle
FlushFileBuffers

Sections

.text
Size: 180KB - Virtual size: 176KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 252KB - Virtual size: 248KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 116KB - Virtual size: 137KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 52KB - Virtual size: 51KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

990f3e51fb7b64dfbd9b097fa28995a9

Headers

File Characteristics

Imports

comdlg32

comctl32

user32

shell32

kernel32

Sections

.text Size: 180KB - Virtual size: 176KB

.rdata Size: 252KB - Virtual size: 248KB

.data Size: 116KB - Virtual size: 137KB

.rsrc Size: 52KB - Virtual size: 51KB

.text
Size: 180KB - Virtual size: 176KB

.rdata
Size: 252KB - Virtual size: 248KB

.data
Size: 116KB - Virtual size: 137KB

.rsrc
Size: 52KB - Virtual size: 51KB