2747ca812b7ba4f1d5e64ec2fba5ad21

Sharing

Copy URL Twitter E-mail

General

Target

2747ca812b7ba4f1d5e64ec2fba5ad21
Size

117KB
MD5

2747ca812b7ba4f1d5e64ec2fba5ad21
SHA1

05bffc7e5e5104032a7f74ecbe21b28ebecfaa7d
SHA256

3d3117015a57387813f4411b814b6000df8288aed3d3d3e5fdbfdf2bb16056f5
SHA512

ad8d7a0e7d5384d9143928ca74a0ec0e08ff8b315f1ae442f0d5babd92539df3e652bbce7192523ee2da609d257b245d8b1b62460d1c4dc59fb47efee2f6030f
SSDEEP

3072:iX7aSApiv13Jb4yVK2OWpdEq7LJ95Eogd8pIeU1:iX7aSApidbEOlPJ9K8pIe

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2747ca812b7ba4f1d5e64ec2fba5ad21

Files

2747ca812b7ba4f1d5e64ec2fba5ad21
.exe windows:5 windows x86 arch:x86

691d7ad707cc46d5b644e303fc44aa9a

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

ShowScrollBar
SetWindowTextW
SetWindowLongW
SetWindowLongA
SetTimer
SetMenuItemInfoW
SetMenu
SetDebugErrorLevel
SendMessageW
RemoveMenu
RegisterClassA
PostQuitMessage
PostMessageA
OpenClipboard
NotifyWinEvent
ModifyMenuW
MessageBoxW
MapVirtualKeyA
MapDialogRect
LookupIconIdFromDirectory
CallWindowProcA
LockSetForegroundWindow
LoadIconA
LoadCursorA
LoadBitmapA
LoadAcceleratorsW
LoadAcceleratorsA
KillTimer
IsZoomed
IsWindowEnabled
IsDlgButtonChecked
InvalidateRect
InsertMenuItemA
GetWindowTextA
GetWindowPlacement
GetWindowLongA
GetUserObjectInformationA
ShowWindow
GetSubMenu
GetMenuItemInfoW
GetMenuItemInfoA
GetMenuItemCount
GetKeyState
GetGUIThreadInfo
GetDlgItem
GetClientRect
GetClassInfoW
GetClassInfoA
GetCapture
FlashWindowEx
FindWindowA
EndPaint
EnableWindow
EmptyClipboard
DrawStateW
DrawMenuBar
DispatchMessageW
DestroyWindow
DestroyMenu
DestroyIcon
DestroyAcceleratorTable
DdeGetLastError
DdeConnectList
CreateWindowExW
CreateWindowExA
CreateMenu
CreateIconIndirect
CreateAcceleratorTableA
CheckMenuRadioItem
CheckMenuItem
CheckDlgButton
CharUpperW
CharUpperA
CharPrevA
CharLowerW
TileWindows
TrackPopupMenuEx
TranslateAcceleratorA
wsprintfA
UpdateWindow
UpdateLayeredWindow
TranslateMessage
TranslateMDISysAccel
GetTitleBarInfo
TranslateAcceleratorW

kernel32

GetFileSize
lstrcatA
WideCharToMultiByte
WaitForSingleObject
VirtualProtect
VirtualFree
VirtualAlloc
UnmapViewOfFile
SystemTimeToFileTime
SetPriorityClass
SetLastError
SetFilePointer
SetEvent
SetEndOfFile
RemoveDirectoryA
ReadFile
MultiByteToWideChar
MapViewOfFile
LocalFree
LoadLibraryA
InterlockedIncrement
HeapAlloc
GlobalUnlock
GlobalSize
GlobalLock
GlobalFree
GlobalAlloc
GetWindowsDirectoryA
GetVolumeInformationW
GetVolumeInformationA
GetVersionExA
GetUserDefaultLangID
GetTickCount
GetTempPathW
GetSystemTime
GetStartupInfoA
GetProcessHeap
GetProcAddress
GetModuleHandleA
GetModuleFileNameA
GetLogicalDriveStringsA
GetLastError
GetFullPathNameA
GetExitCodeThread
GetDriveTypeA
GetDiskFreeSpaceA
GetCurrentProcess
FormatMessageA
FindNextFileA
FindNextChangeNotification
FindFirstFileA
FindFirstChangeNotificationA
FindCloseChangeNotification
FindClose
FileTimeToSystemTime
FileTimeToLocalFileTime
FileTimeToDosDateTime
ExitThread
ExitProcess
DeviceIoControl
DeleteFileA
DeleteCriticalSection
CreateFileA
CreateDirectoryA
CopyFileW
CopyFileA
CompareFileTime

advapi32

RegOpenKeyExA
RegSetValueExW
RegSetValueExA
RegQueryValueExW
RegQueryValueExA
GetUserNameW
RegEnumKeyExA
RegDeleteKeyA
RegCreateKeyExA
RegCloseKey

comdlg32

PrintDlgA
GetFileTitleA

shell32

SHGetSpecialFolderLocation
SHGetMalloc
SHGetFileInfoA
SHGetDesktopFolder
SHFileOperationA
SHChangeNotify
SHBrowseForFolderA
SheChangeDirA
ShellExecuteA
SHGetPathFromIDListA

ole32

RevokeDragDrop
ReleaseStgMedium
RegisterDragDrop
OleUninitialize
OleInitialize
DoDragDrop
CoUninitialize
CoTaskMemFree
CoTaskMemAlloc
CoInitialize

msvcrt

wcsncmp
wcslen
strlen
srand
rand
memset
memmove
memcpy
memcmp
malloc
free
_CxxThrowException
_XcptFilter
__CxxFrameHandler
__dllonexit
__getmainargs
__p__commode
__p__fmode
__set_app_type
__setusermatherr
_adjust_fdiv
_beginthreadex
_controlfp
_except_handler3
_exit
_initterm
_onexit
_purecall
_wcsicmp
exit

Sections

.text
Size: 26KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 68KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 18KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

691d7ad707cc46d5b644e303fc44aa9a

Headers

DLL Characteristics

File Characteristics

Imports

user32

kernel32

advapi32

comdlg32

shell32

ole32

msvcrt

Sections

.text Size: 26KB - Virtual size: 28KB

.rdata Size: 68KB - Virtual size: 68KB

.data Size: 18KB - Virtual size: 20KB

.rsrc Size: 4KB - Virtual size: 4KB

.text
Size: 26KB - Virtual size: 28KB

.rdata
Size: 68KB - Virtual size: 68KB

.data
Size: 18KB - Virtual size: 20KB

.rsrc
Size: 4KB - Virtual size: 4KB