26ee33e4d54bc69e8085ccb624d00b56

Sharing

Copy URL Twitter E-mail

General

Target

26ee33e4d54bc69e8085ccb624d00b56
Size

59KB
MD5

26ee33e4d54bc69e8085ccb624d00b56
SHA1

c0a42c455cb9ed819e32b0e77dbd4b99a52da9ac
SHA256

b9cbccf282eed903c0b0084c89ed5c8e980de0ea2a5152281c738123d3ae437a
SHA512

90061e6ab2be2b01c4338fd43dd2717fda3c796ad9bdc3fd4a71bcc21ffb149721cded153fb35294a66e6a89c69eabca7f233d1ca6795e1f9c5df35295f2fb50
SSDEEP

1536:y3epa4xr+LcMXxU+o3fErj+90rKRztBDm:oYa4xr+LlX2/vErUeKRzrDm

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
26ee33e4d54bc69e8085ccb624d00b56

Files

26ee33e4d54bc69e8085ccb624d00b56
.exe windows:4 windows x86 arch:x86

3b78d3c0c53ed664a9a01b34d087a797

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetMenuItemCount
RedrawWindow
SetWindowContextHelpId
CascadeWindows
GetTopWindow
DdeEnableCallback
GetWindowInfo
DdeNameService
SetKeyboardState
DrawTextExA
SetWindowRgn
GetClassWord
CreateWindowExA
SetDoubleClickTime
GetDlgCtrlID
SendIMEMessageExA
GetAsyncKeyState
DrawFrame
CharNextExA
BringWindowToTop
DdeQueryStringA
SetClipboardData
EnumDisplayMonitors
GetIconInfo
RemovePropA
VkKeyScanA
SetProcessWindowStation
EndMenu
ArrangeIconicWindows
IsMenu
CreateDialogParamA
WinHelpA
DestroyMenu
DdeUnaccessData
CharToOemBuffA
CreateAcceleratorTableA
IsWindowUnicode
GetShellWindow
GetSystemMenu
SetCaretBlinkTime
IMPGetIMEA
DdeGetLastError
GetNextDlgTabItem
ChildWindowFromPointEx
GetLastActivePopup
UnpackDDElParam
DdeCreateDataHandle
FindWindowExA
SwitchToThisWindow
TileWindows
DlgDirSelectExA
DrawCaption
UpdateWindow
ShowWindowAsync
ShowCursor

advapi32

RegOpenKeyA
ObjectDeleteAuditAlarmA
CryptGenKey
RegUnLoadKeyA
GetMultipleTrusteeA
RegConnectRegistryA
OpenEventLogA
InitializeAcl
RevertToSelf
GetSecurityDescriptorControl
GetSecurityDescriptorOwner
IsTextUnicode
GetNumberOfEventLogRecords
PrivilegeCheck
QueryServiceObjectSecurity
GetTrusteeTypeA
AccessCheck
ChangeServiceConfigA
CryptEncrypt
RegSaveKeyA
GetExplicitEntriesFromAclA
EnumDependentServicesA
SetEntriesInAuditListA
BackupEventLogA
AddAce
GetAclInformation
RegFlushKey
BuildSecurityDescriptorA
GetServiceDisplayNameA
RegQueryValueA
CopySid
CryptSetKeyParam
CryptDestroyHash
CryptGetKeyParam
SetServiceStatus

kernel32

TlsSetValue

Sections

.klq
Size: 22KB - Virtual size: 45KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.qrs
Size: 5KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.wzifi
Size: 1024B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.uzi
Size: 27KB - Virtual size: 132KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3b78d3c0c53ed664a9a01b34d087a797

Headers

File Characteristics

Imports

user32

advapi32

kernel32

Sections

.klq Size: 22KB - Virtual size: 45KB

.qrs Size: 5KB - Virtual size: 10KB

.wzifi Size: 1024B - Virtual size: 1KB

.uzi Size: 27KB - Virtual size: 132KB

.rsrc Size: 2KB - Virtual size: 4KB

.klq
Size: 22KB - Virtual size: 45KB

.qrs
Size: 5KB - Virtual size: 10KB

.wzifi
Size: 1024B - Virtual size: 1KB

.uzi
Size: 27KB - Virtual size: 132KB

.rsrc
Size: 2KB - Virtual size: 4KB