26b0ee4467bbdfcdd69604980316708f

Sharing

Copy URL

Twitter E-mail

General

Target

26b0ee4467bbdfcdd69604980316708f
Size

220KB
MD5

26b0ee4467bbdfcdd69604980316708f
SHA1

019238413cc3ac3895841b9c06e4ce3fe5a412a9
SHA256

bdd346435bfef4a60a461ac72cc51da062a9b8232b027f581ae2780b9a791fcf
SHA512

3095e85f944935bdaeaa51636712540440ce0cb9eebdf6bdafd17cfe10dd15d1fc0b74196c5c7883b30263a1a3188eafc98e31d10a75ade566e161d236ca79dc
SSDEEP

6144:ZSqxkye3e9JIJ5ju/jV7be9sUGuMq6APpl:ZSqxky4e9Uy/jWsUt76AP

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
26b0ee4467bbdfcdd69604980316708f

Files

26b0ee4467bbdfcdd69604980316708f
.exe windows:4 windows x86 arch:x86

893abf05921625c5b005b13c6daf9422

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

oleaut32

LoadTypeLibEx
SafeArrayRedim
VariantChangeType

version

GetFileVersionInfoA
VerInstallFileA
VerQueryValueA

user32

SetClassLongW
EnumDisplaySettingsExA
OpenWindowStationA
BroadcastSystemMessageA
TrackPopupMenu
GetMonitorInfoW
DialogBoxIndirectParamW
PostQuitMessage
GetIconInfo
ValidateRgn
CopyIcon
CallWindowProcW
FindWindowExA
ValidateRect
GetClassInfoExA
InsertMenuItemA
SetMenuDefaultItem
SetCursor
IsDialogMessageW
MonitorFromWindow
mouse_event
GetClipboardFormatNameW
GetClipboardOwner
CopyAcceleratorTableW
IsDlgButtonChecked
GetUserObjectInformationW
UnregisterClassA
InternalGetWindowText
UnionRect
SetWindowRgn
GetMenuItemInfoW
SetMenuItemInfoA
CloseWindowStation
LoadBitmapW
UnregisterHotKey
WindowFromDC
WinHelpW
EnumDesktopsA
InsertMenuW
SendMessageCallbackW
UnhookWindowsHookEx
GetKeyNameTextA
CreateDesktopW
DefWindowProcA
SetScrollRange
IsDialogMessageA
SendMessageTimeoutW
SetLastErrorEx
CharNextExA
DestroyWindow
GetWindowThreadProcessId
SetMenu
GetUserObjectInformationA
SwapMouseButton
SetWindowsHookW
CreateWindowExA
VkKeyScanW
CallWindowProcA
CountClipboardFormats
LoadCursorA
EnableWindow
IsCharUpperW
MonitorFromPoint
CreateWindowExW
ChangeDisplaySettingsExA

ole32

CoCreateInstance
CoMarshalInterface
CoInitializeEx
OleSetClipboard
CoGetTreatAsClass

shell32

DragFinish
SHGetSpecialFolderLocation
FindExecutableA
SHAddToRecentDocs
SHFileOperationA

advapi32

RegQueryValueA
BuildSecurityDescriptorW
RegQueryValueW
CryptGenRandom
QueryServiceObjectSecurity
AccessCheck
GetSidLengthRequired
SetNamedSecurityInfoW
LookupAccountNameA
NotifyBootConfigStatus
CryptGetHashParam
RegLoadKeyW
IsValidSecurityDescriptor
LogonUserA
CryptGetUserKey
GetSidSubAuthorityCount
OpenSCManagerW
GetCurrentHwProfileW
GetFileSecurityW
SetServiceObjectSecurity
GetExplicitEntriesFromAclW
RegLoadKeyA
QueryServiceLockStatusW
UnlockServiceDatabase
SetKernelObjectSecurity
CreateProcessAsUserA
OpenProcessToken
LookupPrivilegeValueW
LookupAccountSidA
QueryServiceStatus
StartServiceA
GetSidIdentifierAuthority
NotifyChangeEventLog
LogonUserW
AllocateAndInitializeSid
GetSecurityDescriptorDacl
ReportEventA
EnumDependentServicesW
RegNotifyChangeKeyValue
SetSecurityDescriptorSacl
RegSetKeySecurity
RegConnectRegistryW

kernel32

EndUpdateResourceA
GetStartupInfoA
GetPrivateProfileSectionW
CreatePipe
EnumCalendarInfoA
GetTimeZoneInformation
GetProcessTimes
GetDateFormatA
lstrlenA
VirtualAlloc
CreateWaitableTimerA
MultiByteToWideChar
PulseEvent
SetVolumeLabelA
FormatMessageW
GlobalFindAtomA
GetFileAttributesExA
GetNumberFormatW
SetLastError
ReadConsoleInputW
CopyFileExW
SetConsoleTitleA
GetDriveTypeW
GetFileInformationByHandle
ReadFile
SystemTimeToFileTime
GetFileAttributesA
GetVolumeInformationW
CreateDirectoryExA
LeaveCriticalSection
WriteConsoleOutputW
WaitNamedPipeA
PeekNamedPipe
FormatMessageA
VirtualQuery
SetProcessAffinityMask
CreateNamedPipeW
GetComputerNameW
GetDriveTypeA
GetTapeParameters
GetLogicalDriveStringsA
SetSystemTime
GetEnvironmentVariableW
CreateDirectoryW
RemoveDirectoryW
GetPrivateProfileStringA
GetDiskFreeSpaceExA
MoveFileExA
LoadResource
GetModuleHandleA
SetNamedPipeHandleState
FindFirstFileExW

gdi32

SetColorAdjustment
AddFontResourceW
GetTextExtentPointW
GetTextCharsetInfo
ModifyWorldTransform
ScaleViewportExtEx
ExtEscape
SetWinMetaFileBits
GdiComment
EnumObjects
GetFontLanguageInfo
GetROP2
GetClipRgn
CombineRgn
SetPolyFillMode
GetTextExtentExPointA
SetMapperFlags
ExtSelectClipRgn
SelectObject

msvcrt

_getmbcp
localtime
strcoll
setlocale
fputwc
_write
_getdrive
_controlfp
_except_handler3
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
_acmdln
_XcptFilter
_exit
_stricmp
_popen
_pctype
_waccess
ceil
mktime
swscanf
vprintf
__p__environ
_chsize
_errno
_strnicmp
_wsplitpath
_chdrive
_open
iswcntrl
_beginthread
exit
_chmod
_tempnam
free
__doserrno
_getche
_mbschr
_strrev
_spawnv
_i64tow
_wopen
_get_osfhandle
iswspace
vfwprintf
isprint
_mbscpy
vswprintf
qsort
_tell
_memicmp
printf
strcspn
swprintf
wcsspn
islower
_vsnprintf
mbtowc
ctime
_mbsnbcnt
vwprintf
_mbsstr
tolower
_eof
_mbsupr

Sections

.text
Size: 192KB - Virtual size: 190KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

893abf05921625c5b005b13c6daf9422

Headers

File Characteristics

Imports

oleaut32

version

user32

ole32

shell32

advapi32

kernel32

gdi32

msvcrt

Sections

.text Size: 192KB - Virtual size: 190KB

.rdata Size: 8KB - Virtual size: 6KB

.data Size: 16KB - Virtual size: 13KB

.text
Size: 192KB - Virtual size: 190KB

.rdata
Size: 8KB - Virtual size: 6KB

.data
Size: 16KB - Virtual size: 13KB