3b2b3a909e3f3940494459edeb3401d9

Sharing

Copy URL Twitter E-mail

General

Target

3b2b3a909e3f3940494459edeb3401d9
Size

22KB
MD5

3b2b3a909e3f3940494459edeb3401d9
SHA1

3c123412260fe2bdc9d301e1bb961b29d1c7f810
SHA256

d3a96199b6173584e3ff1423f79c81631b2147df52c4fd0a1ff488164db5f41f
SHA512

9341c8f27b4af42da66bda8b7f74d03abee9008d4e2bacf42d8715e53456d6f8b0f1abd277f5ed91898b745a9a4f20ec3eea69436b2592dc169f1c0069fdc7fa
SSDEEP

384:7pE5M+UudRws0hCQ9jAErEME75Xdn7PqwyoGVuHl:aaid6sq9jAErED73PqwBGVuHl

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3b2b3a909e3f3940494459edeb3401d9

Files

3b2b3a909e3f3940494459edeb3401d9
.exe windows:4 windows x86 arch:x86

38a09603548c27009a00a8aa984f93a0

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
CreateFileA
ExitProcess
FindClose
FindFirstFileA
FlushFileBuffers
FreeEnvironmentStringsA
FreeEnvironmentStringsW
FreeLibrary
GetACP
GetCPInfo
GetCommandLineA
GetCurrentProcess
GetCurrentProcessId
GetCurrentThreadId
GetEnvironmentStrings
GetEnvironmentStringsW
GetFileAttributesA
GetFileType
GetLastError
GetLocaleInfoA
GetModuleFileNameA
GetModuleHandleA
GetOEMCP
GetProcAddress
GetProcessHeap
GetStartupInfoA
GetStdHandle
GetStringTypeA
GetStringTypeW
GetSystemInfo
GetSystemTimeAsFileTime
GetTickCount
GetVersionExA
HeapAlloc
HeapCreate
HeapDestroy
HeapFree
HeapReAlloc
HeapSize
InterlockedExchange
LCMapStringA
LCMapStringW
LoadLibraryA
MultiByteToWideChar
QueryPerformanceCounter
ReadFile
RtlUnwind
SetFileAttributesA
SetFilePointer
SetHandleCount
SetStdHandle
TerminateProcess
UnhandledExceptionFilter
VirtualAlloc
VirtualFree
VirtualProtect
VirtualQuery
WideCharToMultiByte
WriteFile

advapi32

RegCloseKey
RegCreateKeyExA
RegOpenKeyExA
RegQueryValueExA
RegSetValueExA

gdi32

CreateFontIndirectA
DeleteObject
GetObjectA
GetStockObject

comdlg32

ChooseColorA
ChooseFontA
GetOpenFileNameA
GetSaveFileNameA

user32

ActivateKeyboardLayout
CheckMenuItem
ClientToScreen
CreateWindowExA
DefWindowProcA
DestroyWindow
DialogBoxParamA
DispatchMessageA
EnableMenuItem
EnableWindow
EndDialog
GetClientRect
GetDlgItem
GetDlgItemInt
GetKeyState
GetKeyboardLayoutList
GetKeyboardLayoutNameA
GetMenu
GetMessageA
GetParent
GetSubMenu
GetWindowLongA
GetWindowRect
GetWindowTextA
GetWindowTextLengthA
HideCaret
LoadAcceleratorsA
LoadCursorA
LoadIconA
LoadMenuA
MessageBoxA
MoveWindow
PostMessageA
PostQuitMessage
RegisterClassA
RegisterWindowMessageA
SendMessageA
SetDlgItemInt
SetFocus
SetWindowTextA
ShowCaret
ShowWindow
TrackPopupMenu
TranslateAcceleratorA
TranslateMessage
UpdateWindow

shell32

DragAcceptFiles
DragQueryFileA

Sections

.text
Size: 10KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 7KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

38a09603548c27009a00a8aa984f93a0

Headers

File Characteristics

Imports

kernel32

advapi32

gdi32

comdlg32

user32

shell32

Sections

.text Size: 10KB - Virtual size: 12KB

.data Size: 512B - Virtual size: 4KB

.rsrc Size: 7KB - Virtual size: 8KB

.text
Size: 10KB - Virtual size: 12KB

.data
Size: 512B - Virtual size: 4KB

.rsrc
Size: 7KB - Virtual size: 8KB