28c0743d76239bb6466deaddd7be63a3

Sharing

Copy URL

Twitter E-mail

General

Target

28c0743d76239bb6466deaddd7be63a3
Size

260KB
MD5

28c0743d76239bb6466deaddd7be63a3
SHA1

a193e3ccf52a3b498bc748504a72acfacba70884
SHA256

adc844b31ec8bd11ecf8001306c7599355491d66a2891206d1c657b860683536
SHA512

35ed45eaf45bbd5dcf87a9f58eabc9c3ce0db690673cae57549bf9e39c1b79106fa6dfefbecb97cf997a62bd0ff06be99f1d52af8f8bbce028b25f28cc82ff5b
SSDEEP

6144:CkPrNcBqH6LBz/mRmP16sr2m+U0lses6v9b2FRvtKR6xczjD:Ckzqm61qVUFe7vUqo

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
28c0743d76239bb6466deaddd7be63a3

Files

28c0743d76239bb6466deaddd7be63a3
.exe windows:4 windows x86 arch:x86

6efcefc3b82176d1bbb1fb2864b8079d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

ord17
ImageList_LoadImageW
ImageList_Destroy
ImageList_GetIcon

user32

FindWindowA
GetMenuItemCount
DrawIconEx
DestroyWindow
DrawMenuBar
IsDialogMessageA
DestroyCaret
LoadIconA
SetMenu
ValidateRect
DefWindowProcA
EnableWindow
UnpackDDElParam
LoadAcceleratorsA
EndDialog
CheckMenuItem
GetWindow
GetMessageA
IsWindowVisible
SetForegroundWindow
GetDCEx
OpenClipboard
ScreenToClient
DrawFocusRect
GetActiveWindow
CopyRect
MessageBoxA
CallNextHookEx
SetWindowPlacement
LoadCursorA
GetDC
GetTopWindow
CharLowerA
EnumChildWindows
DrawEdge
MapDialogRect
SendMessageA
SetRect
InsertMenuItemA
CreateDialogIndirectParamA
DestroyCursor
GetLastActivePopup
SetWindowTextA
GetKeyState
InflateRect
ExitWindowsEx
ShowWindow
RegisterClassExA
GetParent
ShowScrollBar
OffsetRect
CreateCaret
GetDesktopWindow
SetFocus
CharUpperA
GetWindowDC
SetRectEmpty
TranslateMessage
GetCapture
IsIconic
AdjustWindowRectEx
LoadMenuA
GetClientRect
GetNextDlgGroupItem
GetSystemMetrics
FrameRect
SetCapture
SetMenuDefaultItem
ModifyMenuA
WindowFromPoint
IsDlgButtonChecked
MessageBeep
GetSysColorBrush
DispatchMessageA
SetWindowContextHelpId
GetScrollPos
SetWindowsHookExA
UpdateWindow
GetWindowPlacement
DrawTextA
SendDlgItemMessageA
GetMessagePos
mouse_event
DestroyMenu
RegisterClassA
TabbedTextOutA
InvalidateRect
DeferWindowPos
GetMenuState
IsZoomed
IsRectEmpty
GetClassNameA
IsWindow
GetDlgCtrlID
CreateWindowExA
IntersectRect
LockWindowUpdate
KillTimer
RemoveMenu
RegisterWindowMessageA
BringWindowToTop
EnableMenuItem
SetParent
ReleaseCapture
CreateAcceleratorTableA

ole32

StgOpenStorageOnILockBytes
OleIsRunning
OleRegGetMiscStatus
DoDragDrop
OleCreateFromData
WriteClassStg
StgOpenStorage
CoLockObjectExternal
OleLoad
OleUninitialize
OleIsCurrentClipboard
OleFlushClipboard
CLSIDFromString
CoDisconnectObject
CreateDataAdviseHolder
OleInitialize
OleRegEnumVerbs
StgIsStorageFile
CoFreeUnusedLibraries
CoRegisterClassObject
CoTaskMemFree
OleLockRunning
StringFromGUID2
CreateOleAdviseHolder
StringFromCLSID
CoGetMalloc
OleRegGetUserType
CoRegisterMessageFilter

kernel32

GlobalAlloc
GetFileType
GetStartupInfoA
TlsAlloc
HeapFree
lstrlenW
LocalFree
SetStdHandle
IsBadWritePtr
InterlockedExchange
EnterCriticalSection
SetEnvironmentVariableA
HeapSize
GetTimeFormatA
WideCharToMultiByte
VirtualQuery
ReadFile
GetCommandLineA
VirtualProtect
GetOEMCP
GetStringTypeA
GetSystemTimeAsFileTime
HeapAlloc
VirtualFree
LCMapStringW
GetLocaleInfoA
GetCurrentProcessId
MultiByteToWideChar
LeaveCriticalSection
HeapCreate
FreeEnvironmentStringsA
UnhandledExceptionFilter
CloseHandle
CreateMutexA
GetCurrentThread
ExitProcess
GetStringTypeW
CompareStringW
GetCPInfo
WriteFile
SetHandleCount
GetTimeZoneInformation
LoadLibraryA
GetModuleHandleA
TerminateProcess
FindNextFileW
GetLastError
GetSystemInfo
FatalAppExitA
FreeEnvironmentStringsW
GetCurrentProcess
GetModuleFileNameA
TlsFree
ConvertDefaultLocale
IsValidCodePage
LCMapStringA
GlobalLock
GlobalFree
SetFilePointer
QueryPerformanceCounter
CompareStringA
TlsSetValue
VirtualAlloc
HeapDestroy
GetVersionExA
TlsGetValue
GetEnvironmentStringsW
GetStdHandle
GetCurrentThreadId
DeleteCriticalSection
SetLastError
GetLocaleInfoW
GetProcAddress
GetTickCount
EnumSystemLocalesA
GetEnvironmentStrings
GetDateFormatA
GetACP
InitializeCriticalSection
HeapReAlloc
GetUserDefaultLCID
FlushFileBuffers
RtlUnwind
SetConsoleCtrlHandler
IsValidLocale

advapi32

AdjustTokenPrivileges
RegOpenKeyExA
RegQueryValueExA
RegCloseKey
RegQueryValueA
RegQueryInfoKeyA
LookupPrivilegeValueA
RegDeleteValueA
RegSetValueExA
RegSetValueA
OpenProcessToken

gdi32

GetPath
CreatePalette
GetPaletteEntries
DPtoLP
SetPixelV
Rectangle
GetBitmapDimensionEx
CreateEnhMetaFileA
DeleteObject
GetObjectA
CloseEnhMetaFile
SetBrushOrgEx
Polygon
GetPixel
GetWindowOrgEx
CreateDCA
DeleteDC
PtInRegion
GetNearestColor
CreateMetaFileA
UnrealizeObject
FrameRgn
GetDeviceCaps
FlattenPath
SelectClipPath
MoveToEx
StrokePath
CloseMetaFile
EqualRgn
CopyMetaFileA
SetBitmapDimensionEx
GetRgnBox

Sections

.text
Size: 79KB - Virtual size: 78KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 96KB - Virtual size: 96KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 49KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 34KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6efcefc3b82176d1bbb1fb2864b8079d

Headers

File Characteristics

Imports

comctl32

user32

ole32

kernel32

advapi32

gdi32

Sections

.text Size: 79KB - Virtual size: 78KB

.rdata Size: 96KB - Virtual size: 96KB

.data Size: 49KB - Virtual size: 56KB

.rsrc Size: 34KB - Virtual size: 34KB

.text
Size: 79KB - Virtual size: 78KB

.rdata
Size: 96KB - Virtual size: 96KB

.data
Size: 49KB - Virtual size: 56KB

.rsrc
Size: 34KB - Virtual size: 34KB