17759bfec38a27b763d326dacd4d5649

Sharing

Copy URL

Twitter E-mail

General

Target

17759bfec38a27b763d326dacd4d5649
Size

33KB
MD5

17759bfec38a27b763d326dacd4d5649
SHA1

96771b66d9321e7e4cad07e7929c22e54b5fc8ff
SHA256

2874bba7768f7c16ab00b39731dbeedf91cc80b6a36791fb031725cfe29b981b
SHA512

d28eb7b47808614da2cf4873abd1695893a28342f5aacdeaf96c28b51fa52d2aa67d2891176ae16ffa998e55bfe342674b704ac0826d2b692e12a4697fde18b3
SSDEEP

768:59MZn0XXsUvLi/DEWVvCc4jMA+hxOX9Mu3wgi0JO/UF/EXsCZ:oE8ILuDnvr4jjEgNMqwgDJHgZ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/Info.Doc______________________________________________________________________.exe

Files

17759bfec38a27b763d326dacd4d5649
.zip
Info.Doc______________________________________________________________________.exe
.exe windows:5 windows x86 arch:x86

c7749f6f9bc547345e41d839bb655235

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

LoadStringA
OemToCharA
OemToCharBuffA
EndDialog
DestroyAcceleratorTable
SetForegroundWindow
GetKeyState
SetScrollInfo
WindowFromPoint
DrawTextW
DrawStateA
ChangeMenuW
UnloadKeyboardLayout
GetDialogBaseUnits
IsCharAlphaW
AdjustWindowRectEx
GetMessageW
GetDCEx
GetFocus
DrawTextA
GetWindow
GetClassInfoExW
IsCharAlphaNumericW
LoadCursorW
SetWindowLongA
DialogBoxIndirectParamA
wvsprintfW
BringWindowToTop
CreateIconFromResource
LoadBitmapW

shlwapi

StrCmpNW
UrlGetPartW
StrSpnW
UrlUnescapeA

gdi32

PatBlt
GetBitmapBits
OffsetViewportOrgEx
OffsetRgn
PolyBezier
StretchDIBits
CreateCompatibleDC
Polyline
CreateFontW
BeginPath
SelectPalette
EnumFontFamiliesExW

kernel32

LockFile
GetCommTimeouts
SetFilePointer
EnumResourceTypesA
lstrcatA
SetSystemTime
GlobalFlags
EnterCriticalSection
LCMapStringA
GetCurrentProcessId
SetSystemTimeAdjustment
lstrcmpiW
SetLastError
GetTimeFormatA
GlobalGetAtomNameA
GetOverlappedResult
GetStdHandle

comctl32

CreatePropertySheetPageW
PropertySheetW
ImageList_Destroy
ImageList_Create
ImageList_AddMasked

Exports

Exports

?___GITDXyfb_@@YGFF@Z

Sections

.text
Size: 26KB - Virtual size: 61KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.sdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 13KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c7749f6f9bc547345e41d839bb655235

Headers

File Characteristics

Imports

user32

shlwapi

gdi32

kernel32

comctl32

Exports

Exports

Sections

.text Size: 26KB - Virtual size: 61KB

.data Size: 2KB - Virtual size: 1KB

.sdata Size: 2KB - Virtual size: 2KB

.rdata Size: 11KB - Virtual size: 11KB

.rsrc Size: 13KB - Virtual size: 16KB

.reloc Size: 1KB - Virtual size: 1KB

.text
Size: 26KB - Virtual size: 61KB

.data
Size: 2KB - Virtual size: 1KB

.sdata
Size: 2KB - Virtual size: 2KB

.rdata
Size: 11KB - Virtual size: 11KB

.rsrc
Size: 13KB - Virtual size: 16KB

.reloc
Size: 1KB - Virtual size: 1KB