260db2385dd162533ffa22b4f9a0a5ed

Sharing

Copy URL Twitter E-mail

General

Target

260db2385dd162533ffa22b4f9a0a5ed
Size

488KB
MD5

260db2385dd162533ffa22b4f9a0a5ed
SHA1

f208ec07a91927825ff0f12adde5f204629e1d46
SHA256

6007c9a35d5bc526efa3fed06c469ac8c1ba96e6b3dd8ad2a3de8e2449906ce2
SHA512

372eb05f79d51212510849c569443f3f15dafa2fa38800801ba2bb918e536edc8137ad7f2fedd72c1799df820985f47615719fea122a0b8625411edd594be085
SSDEEP

12288:OSjDrgx4+DI0iu2fnBMh24DRdw9KT3jxryW6I1UBxT:axzIVDfniEKU9K7b6Iw

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
260db2385dd162533ffa22b4f9a0a5ed

Files

260db2385dd162533ffa22b4f9a0a5ed
.exe windows:4 windows x86 arch:x86

da76405095ca92264f8205c9949883b3

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

ImageList_SetFilter
CreateToolbarEx
ImageList_Create
ImageList_GetImageRect
CreateMappedBitmap
ImageList_GetImageCount
ImageList_AddMasked
ImageList_Merge
CreatePropertySheetPageW
InitCommonControlsEx
GetEffectiveClientRect
ImageList_DragMove
ImageList_SetFlags
DrawStatusText

shell32

SheGetDirA
DragQueryFileA
SHGetFileInfoW

gdi32

EnumFontFamiliesExW

kernel32

OutputDebugStringW
HeapDestroy
SetStdHandle
GetEnvironmentStrings
ExitProcess
ResumeThread
CreateMutexA
TlsSetValue
HeapFree
GetWindowsDirectoryA
GetVersionExA
FreeEnvironmentStringsA
RemoveDirectoryW
EnumCalendarInfoExA
CreateFileMappingA
CreateFileA
GetShortPathNameA
InitializeCriticalSection
GetFileType
FindAtomW
EnumResourceNamesW
GetTickCount
TlsFree
FreeEnvironmentStringsW
InterlockedDecrement
WriteProfileSectionA
GetStdHandle
GetEnvironmentStringsW
GetStringTypeA
IsDebuggerPresent
WaitForSingleObject
GetSystemTime
LeaveCriticalSection
GetCurrentThread
RaiseException
GetTimeFormatA
SetFilePointer
RtlUnwind
SetHandleCount
CloseHandle
GetTimeZoneInformation
GetTimeFormatW
SetUnhandledExceptionFilter
IsValidCodePage
GetCurrentThreadId
TlsAlloc
GetCPInfo
GetProfileStringA
DebugBreak
SystemTimeToTzSpecificLocalTime
LoadLibraryW
lstrcmpi
OpenMutexA
GetStartupInfoA
LoadLibraryA
IsBadReadPtr
LCMapStringW
LocalFree
HeapCreate
GetDiskFreeSpaceA
GlobalHandle
GetProcessHeap
InterlockedIncrement
EnterCriticalSection
GetModuleFileNameA
GetSystemTimeAsFileTime
GetFileAttributesExA
ReadFile
GetCurrentProcess
QueryPerformanceCounter
CreateRemoteThread
GetStringTypeExW
WriteConsoleInputA
CreateProcessA
GetOEMCP
Sleep
HeapReAlloc
CompareStringW
FreeLibrary
EnumSystemLocalesA
OutputDebugStringA
SetConsoleCursorPosition
PulseEvent
GetModuleFileNameW
FlushFileBuffers
GetModuleHandleW
VirtualQuery
InterlockedExchange
AllocConsole
lstrcmpiA
VirtualProtect
TlsGetValue
GetCommandLineA
LCMapStringA
SetLastError
WaitNamedPipeW
GetLocaleInfoA
GetProcAddress
lstrlenA
FileTimeToSystemTime
GetLogicalDrives
CompareStringA
UnhandledExceptionFilter
GetLocaleInfoW
EnumSystemCodePagesW
FlushConsoleInputBuffer
DeleteCriticalSection
TerminateProcess
lstrcmp
GetUserDefaultLCID
GetDateFormatA
GetCurrentProcessId
ReleaseMutex
WriteConsoleW
VirtualLock
IsValidLocale
GetConsoleOutputCP
GetACP
WideCharToMultiByte
HeapValidate
FillConsoleOutputCharacterA
WriteFile
GetConsoleCP
WriteConsoleA
GetLastError
GetConsoleMode
VirtualFreeEx
SetConsoleCtrlHandler
VirtualFree
ReadConsoleOutputCharacterW
GetStringTypeW
VirtualAlloc
HeapAlloc
MultiByteToWideChar
GetModuleHandleA
CreateSemaphoreA
SetEnvironmentVariableA

user32

MessageBeep
InflateRect
GetKeyboardType
RegisterHotKey
PaintDesktop
GetThreadDesktop
DrawTextA
ToUnicode
SetWindowsHookExW
CreateAcceleratorTableW
GrayStringA
RegisterClassExA
SetDlgItemInt
EnableScrollBar
DdeDisconnectList
RegisterClassA
LoadImageA
CreateMenu
PostThreadMessageA
CreateDialogIndirectParamW
SetWindowLongA
GetCaretPos
CreateWindowExW
MessageBoxA
OpenClipboard
BeginDeferWindowPos
MapVirtualKeyExA
DefFrameProcW
GetClassInfoA
DefWindowProcW
ShowWindow
SendMessageTimeoutW
TrackMouseEvent
IsCharLowerA
IsChild
GetMessageW
IntersectRect
ChangeDisplaySettingsExA
ToAscii
DestroyWindow
GetForegroundWindow
GetNextDlgTabItem
BringWindowToTop

wininet

FindFirstUrlCacheEntryA
InternetGetCookieA
FtpOpenFileA
InternetTimeToSystemTimeA

Sections

.text
Size: 268KB - Virtual size: 266KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 100KB - Virtual size: 99KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 100KB - Virtual size: 115KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

da76405095ca92264f8205c9949883b3

Headers

File Characteristics

Imports

comctl32

shell32

gdi32

kernel32

user32

wininet

Sections

.text Size: 268KB - Virtual size: 266KB

.rdata Size: 100KB - Virtual size: 99KB

.data Size: 100KB - Virtual size: 115KB

.rsrc Size: 16KB - Virtual size: 12KB

.text
Size: 268KB - Virtual size: 266KB

.rdata
Size: 100KB - Virtual size: 99KB

.data
Size: 100KB - Virtual size: 115KB

.rsrc
Size: 16KB - Virtual size: 12KB