2778aed7c3c6cf2516e0e9a5f30907e1

Sharing

Copy URL Twitter E-mail

General

Target

2778aed7c3c6cf2516e0e9a5f30907e1
Size

352KB
MD5

2778aed7c3c6cf2516e0e9a5f30907e1
SHA1

c84398890803f11da8472e05e817e6f86665c530
SHA256

228d1212b6742368a3b0ca90ead38f818c1d3c399667c7a2f333cf41b1e759b2
SHA512

ea349cda540785da7b18c6dfbdc2c90e3ca730962074a7f9444c7849fabcc5d2bcfd3765ae6419306b8e8e8bed02a690bc6681157d296472a56746e235c0db8e
SSDEEP

6144:9ifeGlyRiXHBRbRNZKXJpHFqIiphG4UOFrHUxwfUGc1JQ3vEgdpwMxe:96dwsXBRFTq5FqnGgUxwfl1fEgdyMx

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2778aed7c3c6cf2516e0e9a5f30907e1

Files

2778aed7c3c6cf2516e0e9a5f30907e1
.exe windows:4 windows x86 arch:x86

97bf7c56653ef8eaa02d857e8b103b80

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

GetEffectiveClientRect
DrawInsert
ImageList_ReplaceIcon
ImageList_GetFlags
ImageList_SetIconSize
ImageList_Merge
DrawStatusTextW
InitCommonControlsEx
CreateToolbar

advapi32

RegReplaceKeyA
AbortSystemShutdownA
CryptCreateHash
RegQueryValueW
RegOpenKeyExW
CryptHashSessionKey
CryptSetProviderA
LookupAccountSidW
CryptGenRandom
LookupPrivilegeValueA
RegLoadKeyA
CryptGetKeyParam
RegRestoreKeyW
CryptSetProviderW
RegOpenKeyW
CryptDecrypt
ReportEventA
RegRestoreKeyA
CryptEncrypt
CryptSetKeyParam
CryptSetProvParam
LogonUserW

user32

RegisterClassA
ChangeDisplaySettingsA
LoadCursorFromFileW
CreateDialogParamW
GetDCEx
CountClipboardFormats
GetClassNameA
GetMenuDefaultItem
GetDesktopWindow
GetMenuItemID
CreateWindowExW
InsertMenuW
SetCapture
GetMessageW
MessageBoxW
GetListBoxInfo
ShowWindow
SetMenuItemInfoA
SetClassLongW
GetWindowTextW
DefWindowProcW
SystemParametersInfoA
IsDialogMessageA
LoadIconW
InflateRect
FillRect
ScrollWindow
DestroyWindow
GetAsyncKeyState
DialogBoxParamW
RegisterClassExA
GetMenuContextHelpId

kernel32

CloseHandle
LoadLibraryA
VirtualQuery
ReadConsoleA
TlsGetValue
VirtualProtect
SetHandleCount
GetUserDefaultLangID
GetCurrentThreadId
FreeEnvironmentStringsW
GetCurrentThread
GetNamedPipeHandleStateW
GetProcessHeap
FlushFileBuffers
UnhandledExceptionFilter
GetSystemInfo
GetCurrentProcess
WaitForSingleObjectEx
SetThreadContext
ExpandEnvironmentStringsW
HeapDestroy
GetTimeFormatA
HeapAlloc
GetStringTypeW
QueryPerformanceCounter
ExitProcess
GetDriveTypeA
LCMapStringW
SetEnvironmentVariableA
GetLogicalDriveStringsA
EnterCriticalSection
GetDiskFreeSpaceA
GetACP
GetTimeZoneInformation
HeapReAlloc
FreeLibraryAndExitThread
CreateMutexA
IsValidLocale
GetLocaleInfoA
GetUserDefaultLCID
IsBadWritePtr
GetTickCount
EnumCalendarInfoExW
DeleteCriticalSection
OpenMutexA
LocalFree
GetOEMCP
CompareStringA
GetCurrentProcessId
VirtualLock
GetDateFormatA
GetCommandLineA
EnumSystemLocalesA
GetModuleFileNameA
TlsFree
GetSystemDefaultLangID
GetCPInfo
WideCharToMultiByte
GetProcAddress
GetEnvironmentStringsW
VirtualAlloc
GetStartupInfoA
WriteProfileStringW
GetThreadTimes
RtlUnwind
LeaveCriticalSection
LocalShrink
FreeEnvironmentStringsA
MultiByteToWideChar
GetStdHandle
AddAtomW
GetVersionExA
DeleteFileW
GetLastError
GetSystemTimeAdjustment
GetFileType
GetProfileSectionA
TlsAlloc
InitializeCriticalSection
TlsSetValue
GetSystemTimeAsFileTime
GetNumberFormatW
VirtualFree
CreateSemaphoreW
GetModuleHandleA
SetFilePointer
WaitCommEvent
SetLastError
FindNextFileA
SetStdHandle
ReadFile
GetEnvironmentStrings
WriteConsoleInputA
DeleteAtom
GetStringTypeA
WriteFile
PulseEvent
InterlockedExchange
GetTempPathW
CompareStringW
TerminateProcess
HeapFree
GetLocaleInfoW
HeapSize
HeapCreate
IsValidCodePage
SetConsoleActiveScreenBuffer
LCMapStringA

Sections

.text
Size: 160KB - Virtual size: 158KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 76KB - Virtual size: 73KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 92KB - Virtual size: 110KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 20KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

97bf7c56653ef8eaa02d857e8b103b80

Headers

File Characteristics

Imports

comctl32

advapi32

user32

kernel32

Sections

.text Size: 160KB - Virtual size: 158KB

.rdata Size: 76KB - Virtual size: 73KB

.data Size: 92KB - Virtual size: 110KB

.rsrc Size: 20KB - Virtual size: 16KB

.text
Size: 160KB - Virtual size: 158KB

.rdata
Size: 76KB - Virtual size: 73KB

.data
Size: 92KB - Virtual size: 110KB

.rsrc
Size: 20KB - Virtual size: 16KB