220576d80f99b0a37d193777f40b0984

Sharing

Copy URL Twitter E-mail

General

Target

220576d80f99b0a37d193777f40b0984
Size

76KB
MD5

220576d80f99b0a37d193777f40b0984
SHA1

4168b716b679d4ead03b9082ce9dce39f0c43b44
SHA256

37ed56f431dc3b8970faada6271d7216a40173f6995e669f1d6b27ce25bd8ad5
SHA512

a52e83fdd4fc5fd75c41989733a28b876607bb2c89fb98773fa033688b7a1106fea9ddd94b4632e4b0169fb33f7dbdba00a7fba96bc891de7eef73fe03651878
SSDEEP

768:fQypQSV4x8bYWUqYL+7LItY9HKdLLuAth2LfzVnRkDp5MGQlTHM4Tr72rKRu0uvg:xpBuq9RR7LYiqxLuz54UHMVsu0U4P

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
220576d80f99b0a37d193777f40b0984

Files

220576d80f99b0a37d193777f40b0984
.exe windows:4 windows x86 arch:x86

23bb305daea4fa0ab34da8ebdab2e5ab

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcatA
GetStringTypeA
GlobalFree
GetCommandLineA
lstrcpyA
GetLastError
CloseHandle
GetDateFormatA
SetLastError
GetFileSize
lstrcmpA
GetStringTypeW
GetModuleFileNameA
GetModuleHandleA
GetStdHandle
HeapAlloc
WideCharToMultiByte

user32

DrawIconEx
AppendMenuW
DrawIcon
IsWindow
GetDlgItem
GetWindowTextA
DialogBoxParamW
CopyImage
CopyIcon
AppendMenuA
InsertMenuA
IsMenu
DrawTextA
CopyRect
BlockInput
CreateIcon
GetFocus

gdi32

GetClipBox
GetBitmapBits
ClearBitmapAttributes
BeginPath
GetPixel
AddFontResourceW
AbortPath
ExcludeClipRect
CopyMetaFileA
CreateSolidBrush
AddFontResourceA
BitBlt
CloseFigure
AddFontResourceTracking
AddFontMemResourceEx
AddFontResourceExA

advapi32

RegReplaceKeyA
RegOpenKeyW
RegQueryInfoKeyA
RegReplaceKeyW
RegEnumKeyExW
RegCreateKeyExW
RegLoadKeyA
RegCreateKeyW
RegEnumKeyW
RegQueryInfoKeyW
RegDeleteValueA
RegEnumValueA
RegDeleteKeyW
RegEnumValueW
RegQueryValueExW
RegQueryValueExA
RegQueryValueW
RegOpenKeyExW
RegQueryValueA
RegGetKeySecurity

comctl32

ImageList_EndDrag
ImageList_AddMasked
ImageList_Merge
ImageList_Draw
ImageList_LoadImageA
ImageList_Create
ImageList_LoadImageW
ImageList_Copy
ImageList_GetImageRect
ImageList_Remove
ImageList_ReplaceIcon
ImageList_GetIcon
ImageList_LoadImage
ImageList_DragMove
ImageList_DragEnter
ImageList_GetImageInfo
ImageList_DrawIndirect
ImageList_GetImageCount
ImageList_Read
ImageList_Destroy

Sections

.text
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 56KB - Virtual size: 140KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

23bb305daea4fa0ab34da8ebdab2e5ab

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

comctl32

Sections

.text Size: 8KB - Virtual size: 4KB

.rdata Size: 4KB - Virtual size: 2KB

.data Size: 56KB - Virtual size: 140KB

.rsrc Size: 4KB - Virtual size: 1KB

.text
Size: 8KB - Virtual size: 4KB

.rdata
Size: 4KB - Virtual size: 2KB

.data
Size: 56KB - Virtual size: 140KB

.rsrc
Size: 4KB - Virtual size: 1KB