21369841af42fd385c7b5a6d924caa25

Sharing

Copy URL Twitter E-mail

General

Target

21369841af42fd385c7b5a6d924caa25
Size

72KB
MD5

21369841af42fd385c7b5a6d924caa25
SHA1

9bbb4904acb48591a33fbedd01b4c3f3b986bcf6
SHA256

7c29f3b7e4f8c94bee0ce932a59efffb485a841d965021463e137947c9a27c90
SHA512

5ac6480f5941ec183f7bce8b6675f2d2a15df1897f6e564c080c527b7dc8f2a77005e6c3a9db55669f17f11649427be1a6a26b059dae296a3fd6a8376ad3beb9
SSDEEP

1536:7+nO1+FZ+sHOabl2M/l2tmLYKHh0j1jdCZSd22V1borqJ:an4g3b84QttVj1vd2i1Ey

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
21369841af42fd385c7b5a6d924caa25

Files

21369841af42fd385c7b5a6d924caa25
.exe windows:4 windows x86 arch:x86

a68c13c326c0a62931fd7d0fdcc176af

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetSystemMetrics
OpenIcon
MessageBoxA
GetForegroundWindow
GetIconInfo
SetRect
CreatePopupMenu
GetKeyboardLayout
CreateMenu
DispatchMessageA
BeginPaint
DefMDIChildProcA
SetWindowTextA
LoadCursorA
EnableWindow
GetActiveWindow
CallWindowProcA
GetMenuItemInfoA
GetWindow
PtInRect
SetScrollRange
SetWindowLongA
FindWindowA
IsWindowEnabled
GetScrollRange
GetMenuState
GetKeyState
UnhookWindowsHookEx
GetWindowTextLengthA
CharNextA
GetClassInfoA
MsgWaitForMultipleObjects
GetDesktopWindow
GetClientRect
CharUpperA
UpdateWindow
IsDlgButtonChecked
DrawFrameControl
GetKeyboardLayoutList
GetDlgItem
PostMessageA
GetDC
GetTopWindow
EnableScrollBar
CreateWindowExA
SetWindowsHookExA
CharToOemA
FillRect
ShowWindow
LoadBitmapA
SetFocus
IsWindowVisible
GetSysColor
wsprintfA
SetWindowPlacement
CloseClipboard
GetWindowRect
EnumWindows
GetCursor
SetWindowLongW
SetScrollInfo
IsZoomed
RegisterClassA
FrameRect
EnumChildWindows
IsIconic
GetKeyboardType
SetClassLongA
ScrollWindow
TranslateMessage
IsCharUpperA
MoveWindow
GetMenuStringA
SetMenuItemInfoA

kernel32

GetTickCount
GetLastError
GetUserDefaultLCID
GetThreadLocale
ExitProcess
VirtualAlloc

gdi32

CreatePalette

shell32

SHFileOperationA
Shell_NotifyIconW
SHGetFolderPathA

Exports

Exports

oth_3TkZB
tBJZLqdkAyuZM@12
_FFg0GwG0tLrDVI@20
_SfDGC
XLilbmse099
YGUh6YK4T@4
_fpZH8NWp
nHphZI@4
_xG_ZIRaCr93@12
N_X_CjbyEZ5jM
_VN4KpsA3_jiHy
NcZNn1g@4
_rziVysdloff@24
_UmWaEB@4
ilvVmSKG7u
_HXMImq7R8B@24
oT8pzO0@8
_AL5iSxma@8
_U5MDayQELf@4

Sections

.text
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 50KB - Virtual size: 66KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a68c13c326c0a62931fd7d0fdcc176af

Headers

File Characteristics

Imports

user32

kernel32

gdi32

shell32

Exports

Exports

Sections

.text Size: 12KB - Virtual size: 12KB

.rdata Size: 3KB - Virtual size: 3KB

.data Size: 50KB - Virtual size: 66KB

.rsrc Size: 4KB - Virtual size: 4KB

.text
Size: 12KB - Virtual size: 12KB

.rdata
Size: 3KB - Virtual size: 3KB

.data
Size: 50KB - Virtual size: 66KB

.rsrc
Size: 4KB - Virtual size: 4KB