24fd078d88c43ae15f1a0f8e91b69aaa

Sharing

Copy URL Twitter E-mail

General

Target

24fd078d88c43ae15f1a0f8e91b69aaa
Size

106KB
MD5

24fd078d88c43ae15f1a0f8e91b69aaa
SHA1

39a87246739bd1a657d7f35192b390aaa101a2e2
SHA256

37a4a67edcf4cadfe6433067f329301d4b8f6dd318d4b3ed80338f48d6945696
SHA512

9d19a9581ced64e20b685e3182fe6a10079e814951e1d8f445c917bea8171ae6ffc6f4d02ab9ad13fa12ec476ca0f104d66242c4894d5282a10e5b80c167b72a
SSDEEP

1536:ZCR4ayFCMTQirhZi5NWCDToPLhuuXYHBANtmEeeS4LkK//BrukzcsmwFStbWT1Up:ZCRzbirh2JToNZ4BQ/NLRruk+wgbWTep

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
24fd078d88c43ae15f1a0f8e91b69aaa

Files

24fd078d88c43ae15f1a0f8e91b69aaa
.exe windows:4 windows x86 arch:x86

40e9414d800460bf232cb92cbc25de67

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comdlg32

ChooseColorA

msvcrt

_iob
__p__environ
memcpy
strcmp
_except_handler3
__p__fmode
__setusermatherr
_XcptFilter
__set_app_type
_initterm
exit
_acmdln
calloc
_adjust_fdiv
printf
__p__commode
_exit
free
strrchr
__getmainargs
atan

kernel32

DuplicateHandle
GetSystemTimeAsFileTime
CreateProcessA
GetStartupInfoA
RtlUnwind

ole32

DoDragDrop
CoGetClassObject
OleDraw
CoReleaseMarshalData
PropVariantClear
CoFreeUnusedLibraries
CreateILockBytesOnHGlobal
OleGetClipboard

shell32

DragQueryFileW
SHGetDesktopFolder
DragQueryFile
ExtractIconA
ShellExecuteA
SHFileOperationA
SHGetSpecialFolderPathA

oleaut32

LoadTypeLib
SetErrorInfo
SafeArrayPtrOfIndex
SafeArrayRedim
VariantCopy
VariantInit
SysStringLen
SysStringByteLen
SafeArrayUnaccessData
SafeArrayGetUBound
SysAllocStringLen

gdi32

RectInRegion
StretchDIBits
EnumMetaFile
PtVisible
RectVisible
PolyBezierTo
GetMetaFileBitsEx

comctl32

ImageList_Destroy
InitCommonControlsEx
ImageList_BeginDrag
PropertySheetW
InitializeFlatSB
ImageList_SetImageCount

user32

CreatePopupMenu
CallWindowProcA
EnableMenuItem
GetWindowLongA
GetDC
GetScrollPos
RemoveMenu
GetCapture

advapi32

RegSetValueExA
OpenSCManagerA

Sections

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 61KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 31KB - Virtual size: 30KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

40e9414d800460bf232cb92cbc25de67

Headers

File Characteristics

Imports

comdlg32

msvcrt

kernel32

ole32

shell32

oleaut32

gdi32

comctl32

user32

advapi32

Sections

.text Size: 2KB - Virtual size: 1KB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 4KB - Virtual size: 61KB

.rsrc Size: 31KB - Virtual size: 30KB

.text
Size: 2KB - Virtual size: 1KB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 4KB - Virtual size: 61KB

.rsrc
Size: 31KB - Virtual size: 30KB