2314302becaa8e1e3b28a9e09470f3cb

Sharing

Copy URL Twitter E-mail

General

Target

2314302becaa8e1e3b28a9e09470f3cb
Size

400KB
MD5

2314302becaa8e1e3b28a9e09470f3cb
SHA1

34f1059b5fc7b78735a9c8e1d590d370cc744ca5
SHA256

cc7d8bb0acf1371dcccf0596baa18602b62089e96c79516148dfe31eca32c483
SHA512

dc52152e6c447de0f433ae9064363ab800d9cc4aff87c5d22958da597f39f9741b7d02b633d3b721bfc3ee5b42070639a0739c7d8019522bbbda1f73bc4a55fb
SSDEEP

6144:B4DrFReOAy/zJedCS43UvpQE+KJq1R2G5hF0Z5RA5ji7aXJXCKRFexAi:BArHea/uhQE5Jgxu3A5ji7WXzixN

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2314302becaa8e1e3b28a9e09470f3cb

Files

2314302becaa8e1e3b28a9e09470f3cb
.exe windows:4 windows x86 arch:x86

b2d6e36dd6c923db548310578074105e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

ImageList_SetFilter
MakeDragList
CreateUpDownControl
ImageList_DrawEx
DrawStatusTextW
CreateToolbar
CreatePropertySheetPageW
DrawStatusText
ImageList_DragMove
ImageList_GetImageRect
ImageList_Duplicate
ImageList_SetFlags
ImageList_DrawIndirect
CreateToolbarEx
ImageList_GetIcon
CreatePropertySheetPage
ImageList_DragEnter
ImageList_DragLeave
ImageList_Destroy
InitCommonControlsEx
CreateStatusWindowA
ImageList_Draw

kernel32

lstrcatA
CreateWaitableTimerA
GetSystemDefaultLCID
GetCurrencyFormatW
GetLastError
SetStdHandle
WaitForDebugEvent
GetFileAttributesA
CreatePipe
VirtualFree
GetStringTypeW
EnumTimeFormatsW
SetFileAttributesW
GetStdHandle
GetCommandLineW
GetNamedPipeInfo
QueryPerformanceCounter
VirtualAlloc
WideCharToMultiByte
LCMapStringA
HeapCreate
CreateDirectoryW
CompareStringW
LocalCompact
LeaveCriticalSection
EnumCalendarInfoW
WriteFile
CompareStringA
GetSystemInfo
UnhandledExceptionFilter
IsValidLocale
WritePrivateProfileStringW
HeapDestroy
GetModuleHandleA
WaitForSingleObjectEx
GetTimeZoneInformation
GetConsoleMode
GetProfileSectionW
GetCommandLineA
IsValidCodePage
TlsAlloc
InterlockedDecrement
GetSystemTimeAsFileTime
GetLocaleInfoA
GetModuleFileNameW
FlushFileBuffers
SetFileTime
HeapLock
GetProcAddress
HeapAlloc
GetCurrentProcess
GetACP
GetCurrentThread
SetConsoleOutputCP
GetCurrentThreadId
GetStartupInfoA
ExpandEnvironmentStringsW
GetCurrentProcessId
lstrcpyA
TerminateProcess
LCMapStringW
SetEnvironmentVariableA
SetLastError
MoveFileExA
GetEnvironmentStrings
InterlockedExchange
OpenMutexA
EnumDateFormatsExA
GetDateFormatA
GlobalAlloc
GetModuleFileNameA
HeapReAlloc
GetStringTypeA
EnterCriticalSection
ExitProcess
TlsGetValue
GetComputerNameW
HeapSize
InitializeCriticalSectionAndSpinCount
GetLocaleInfoW
GetTimeFormatA
CreateMutexA
CreateFileW
IsBadWritePtr
GetEnvironmentStringsW
RtlUnwind
GetOEMCP
VirtualProtect
GetVersionExA
LoadLibraryA
ReadFile
GetPrivateProfileSectionNamesW
SetFilePointer
MultiByteToWideChar
GetConsoleTitleA
SetHandleCount
GetStartupInfoW
ReadConsoleInputA
InitializeCriticalSection
FreeEnvironmentStringsA
FreeEnvironmentStringsW
TlsSetValue
TlsFree
AddAtomW
GetUserDefaultLCID
CloseHandle
FillConsoleOutputCharacterW
GetProcessShutdownParameters
DeleteCriticalSection
WaitCommEvent
GetCPInfo
HeapFree
EnumSystemLocalesA
FindFirstFileA
VirtualQuery
GetTickCount
GetFileType

gdi32

SetWorldTransform
GetDeviceCaps
GetObjectA
GetBitmapDimensionEx
GetCharWidth32W
GetCharacterPlacementW
CreateDCW
DeleteDC
SetPixel
SaveDC
GdiPlayDCScript

user32

CharUpperW
CreateWindowExA
DialogBoxIndirectParamA
GetPropA
GetClassInfoExW
SendDlgItemMessageW
IsDialogMessageW
CreateDialogParamW
GetClassInfoExA
IsRectEmpty
WaitForInputIdle
ShowCaret
BeginPaint
PostThreadMessageW
UnregisterDeviceNotification
EnumDesktopWindows
CharLowerBuffW
GetUpdateRgn
CallMsgFilterA
GetWindowTextA
DialogBoxParamA
SetDeskWallpaper
OpenDesktopA
SendDlgItemMessageA
RegisterDeviceNotificationA
TranslateAcceleratorW
DefWindowProcW
GetMonitorInfoA
DrawTextExA
RegisterClipboardFormatA
GetWindowPlacement
DdeImpersonateClient
GetDialogBaseUnits
CheckDlgButton
DestroyWindow
RegisterClassExW
CreateWindowExW
EnumDisplayDevicesW
LoadCursorFromFileA
DdeNameService
MessageBoxW
ShowWindowAsync
CreateAcceleratorTableW
GetMenuItemID
LookupIconIdFromDirectoryEx
LoadMenuIndirectW
MsgWaitForMultipleObjects
MapVirtualKeyA
DefMDIChildProcA
InsertMenuA
ToUnicode
RegisterClassA
IsDialogMessage
GetMenuDefaultItem
IsZoomed
ModifyMenuW
CreateDialogIndirectParamA
GetMenuItemInfoW
WINNLSGetEnableStatus
GrayStringW
TileWindows
CharPrevExA
TrackMouseEvent
SetWindowContextHelpId
RegisterClassExA
OemToCharBuffA
GetClipboardFormatNameA
ShowWindow

advapi32

RegDeleteValueW
CryptGenKey
RegSetKeySecurity
CreateServiceA
CryptAcquireContextA
AbortSystemShutdownW

Sections

.text
Size: 168KB - Virtual size: 165KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 96KB - Virtual size: 94KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 100KB - Virtual size: 111KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 32KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b2d6e36dd6c923db548310578074105e

Headers

File Characteristics

Imports

comctl32

kernel32

gdi32

user32

advapi32

Sections

.text Size: 168KB - Virtual size: 165KB

.rdata Size: 96KB - Virtual size: 94KB

.data Size: 100KB - Virtual size: 111KB

.rsrc Size: 32KB - Virtual size: 31KB

.text
Size: 168KB - Virtual size: 165KB

.rdata
Size: 96KB - Virtual size: 94KB

.data
Size: 100KB - Virtual size: 111KB

.rsrc
Size: 32KB - Virtual size: 31KB