23fed827e16d901d9c177e2e8ef1ee26

Sharing

Copy URL Twitter E-mail

General

Target

23fed827e16d901d9c177e2e8ef1ee26
Size

186KB
MD5

23fed827e16d901d9c177e2e8ef1ee26
SHA1

36b9229d3ae3bb811ad939f210671ddfd89dfce1
SHA256

6026ebe7c190c7b62cab50fa556a1af0dfb17a80592e08f1b9df32f7d59e4072
SHA512

f9a302710bc4e8d1c1c45ba8f72b4c3a00c319541ba93f28ba13b6539ac1700d9c7f20ecb6fe5636faa6c09bb79feef6672502699879e12ebf698e4e1112bd3a
SSDEEP

3072:YFAbtDuu3QuBjoHvbpYDKR9Ozk7+DmaYGDgKcn+c1iAo/VqKbPULC:YFktn3XoTWAOzkMZs8nP

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
23fed827e16d901d9c177e2e8ef1ee26

Files

23fed827e16d901d9c177e2e8ef1ee26
.dll windows:4 windows x86 arch:x86

9aa36a8cd9249ec61d8e4823a33124d8

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

shlwapi

SHSetValueA

gdi32

GetBkColor
SelectPalette

user32

GetWindow
GetClassNameA
SetWindowPlacement
CharLowerBuffA
DrawAnimatedRects
IsWindowUnicode
MapVirtualKeyA
CharToOemA
PostQuitMessage
SetPropA
SetCapture
EnableScrollBar
GetFocus
MessageBeep
IsMenu
LoadBitmapA
SetWindowsHookExA
GetMenuItemInfoA
GetWindowLongW
CreateIcon
EnumThreadWindows
GetClipboardData
IsCharLowerA
ShowOwnedPopups
RemoveMenu
InsertMenuItemA
GetScrollRange
CreateWindowExA
SetScrollRange
SetForegroundWindow
WindowFromPoint
ClientToScreen
IsDlgButtonChecked
GetWindowTextA
GetClientRect
GetKeyNameTextA
SetScrollInfo
CharNextW
GetWindowPlacement
GetIconInfo
DrawFrameControl
IsRectEmpty
CharNextA
OffsetRect
LoadIconA
CreateMenu
EndDialog
IsIconic
EmptyClipboard
UnregisterClassA
SetActiveWindow
GetMenuState
DrawIconEx
CheckMenuItem
SetParent
SetClipboardData
GetMenu
GetTopWindow
wsprintfA
GetDlgItem
TranslateMessage

kernel32

GetCPInfo
SetThreadLocale
GetModuleHandleA
GetCurrentThreadId
WaitForSingleObject
WideCharToMultiByte
GetDateFormatA
CreateEventA
CreateFileA
GetCommandLineW
SetFilePointer
SetErrorMode
VirtualAllocEx
LoadLibraryA
GetTickCount
HeapFree
VirtualFree
CreateThread
ExitProcess
GetProcAddress
GetStdHandle
GetThreadLocale

Exports

Exports

gD34I6A
0LhgMu3ChPDc3@16
eFI7uvlt
_SsuhfPH6_
_MekBI3m_wmAf@24
41GDQYdQNvWl@24
LGaAh_fh80@16
aM9AkHHsa3
_DZYWXAOB@16
_k9Bf4ro@16
_YwN3xqK@20

Sections

.text
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 9KB - Virtual size: 156KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 150KB - Virtual size: 149KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.abdata
Size: 512B - Virtual size: 252B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 512B - Virtual size: 304B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9aa36a8cd9249ec61d8e4823a33124d8

Headers

File Characteristics

Imports

shlwapi

gdi32

user32

kernel32

Exports

Exports

Sections

.text Size: 9KB - Virtual size: 9KB

.rdata Size: 9KB - Virtual size: 156KB

.data Size: 150KB - Virtual size: 149KB

.abdata Size: 512B - Virtual size: 252B

.edata Size: 512B - Virtual size: 304B

.rsrc Size: 14KB - Virtual size: 13KB

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 9KB - Virtual size: 9KB

.rdata
Size: 9KB - Virtual size: 156KB

.data
Size: 150KB - Virtual size: 149KB

.abdata
Size: 512B - Virtual size: 252B

.edata
Size: 512B - Virtual size: 304B

.rsrc
Size: 14KB - Virtual size: 13KB

.reloc
Size: 2KB - Virtual size: 1KB